PYEONGTAEK
/
its-op-server


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111
							package com.its.op.security;

import com.its.op.dao.repository.its.oper.TbUserCnncHsRepository;
import com.its.op.entity.its.oper.TbUserCnncHs;
import com.its.utils.CookieUtils;
import com.its.utils.ItsUtils;
import lombok.AllArgsConstructor;
import lombok.extern.slf4j.Slf4j;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.web.WebAttributes;
import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
import org.springframework.security.web.authentication.WebAuthenticationDetails;
import org.springframework.stereotype.Service;

import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;

@Slf4j
@AllArgsConstructor
@Service
public class WebLoginSuccessHandler implements AuthenticationSuccessHandler {

    private final TbUserCnncHsRepository cnncHsRepo;

    @Override
    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response, Authentication authentication) throws IOException, ServletException {

        // IP, 세션 ID
        WebAuthenticationDetails details = (WebAuthenticationDetails)authentication.getDetails();

        // 인증 ID
        String userId = authentication.getName();
        log.info("login Remote-IP/Session-ID/User-ID: {}/{}/{}", details.getRemoteAddress(), details.getSessionId(), userId);

        // 권한 리스트
        List<GrantedAuthority> authList = new ArrayList<>(authentication.getAuthorities());
        for (GrantedAuthority auth : authList) {
            log.info("login Roll: {}", auth.getAuthority());
        }

        UserInfrVo userInfr = (UserInfrVo)authentication.getPrincipal();
        String remoteIp = ItsUtils.getHttpServletRemoteIP(request);
        TbUserCnncHs cnncHs = TbUserCnncHs.builder()
                .operSystId(userInfr.getOperSystId())
                .userId(userInfr.getUserId())
                .loginHms(ItsUtils.getSysTime())
                .logoutHms("")
                .build();
        this.cnncHsRepo.insertData(cnncHs.getOperSystId(), cnncHs.getLoginHms(), cnncHs.getUserId(), cnncHs.getLogoutHms());
        log.info("login history: {}, {}", cnncHs, remoteIp);

        //log.info("cnncHs: {}, {}", cnncHs.getUserId(), cnncHs.getLoginHms());

        String defaultSuccessUrl = "/application/op/00.main/main.html";
        String uri = defaultSuccessUrl;
        String domain = "/";

        HttpSession session = request.getSession();
        session.setAttribute(WebConstants.USER_UUID, WebMvcConfig.encUserId(cnncHs.getUserId()));
        session.setAttribute(WebConstants.USER_TIME, cnncHs.getLoginHms());
        session.setAttribute(WebConstants.LOGIN_USER, userInfr);

        CookieUtils.setCookie(response, WebConstants.USER_UUID, WebMvcConfig.encUserId(cnncHs.getUserId()), 60*60, domain);
        CookieUtils.setCookie(response, WebConstants.USER_TIME, cnncHs.getLoginHms(), 60*60, domain);
        CookieUtils.setCookie(response, WebConstants.USER_OPER_SYST_ID, userInfr.getOperSystId(), 60*60, domain);

        // Security 가 요청을 가로챈 경우 사용자가 원래 요청했던 URI 정보를 저장한 객체
//        RequestCache requestCache = new HttpSessionRequestCache();
//        SavedRequest savedRequest = requestCache.getRequest(request, response);
//
//        // 있을 경우 URI 등 정보를 가져와서 사용
//        if (savedRequest != null) {
//            uri = savedRequest.getRedirectUrl();
//            // 세션에 저장된 객체를 다 사용한 뒤에는 지워줘서 메모리 누수 방지
//            requestCache.removeRequest(request, response);
//            log.info("Saved Uri: {}", uri);
//        }

        // 세션 Attribute 확인
//        Enumeration<String> list = request.getSession().getAttributeNames();
//        while (list.hasMoreElements()) {
//            log.info("Attribute: {}", list.nextElement());
//            //Attribute: TIME
//            //Attribute: UUID
//            //Attribute: SPRING_SECURITY_CONTEXT
//        }
        clearAuthenticationAttributes(request);
        response.sendRedirect(uri);
    }

    /**
     * 로그인 성공시 로그인 실패 시 작성한 에러 세션 지우기
     * @param request
     */
    protected void clearAuthenticationAttributes(HttpServletRequest request) {
        HttpSession session = request.getSession(false);
        //log.error("clearAuthenticationAttributes: {}", session);
        if (session == null) {
            log.warn("session already cleared.");
            return;
        }

        session.removeAttribute(WebAttributes.AUTHENTICATION_EXCEPTION);
    }
}