UserDetailsService

DaoAuthenticationProvider 에 의해 사용된다. username, password를 반환하지만 인증에 필요한 추가 정보들을 더 반환하도록 구현체를 만들어 커스텀할 수 있다.

커스텀 예시 코드만 남긴다.

package kr.co.rland.boot3_api.auth.service;

import kr.co.rland.boot3_api.anonymous.member.repository.MemberRepository;
import kr.co.rland.boot3_api.anonymous.menu.entity.Member;
import kr.co.rland.boot3_api.auth.entity.RlandUserDetails;
import lombok.RequiredArgsConstructor;
import org.springframework.security.core.GrantedAuthority;
import org.springframework.security.core.authority.SimpleGrantedAuthority;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.stereotype.Service;

import java.util.ArrayList;
import java.util.List;
import java.util.Optional;

@lombok.extern.slf4j.Slf4j
@RequiredArgsConstructor
@Service
public class CustomUserDetailsService implements UserDetailsService {

    private final MemberRepository memberRepository;

    @Override
    public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
        log.info("username: {}", username);
        Optional<Member> memberOp = memberRepository.findByUsername(username);

        Member member = memberOp.orElseThrow(() -> new UsernameNotFoundException("User not found"));
        //DB가 있을경우 authorities도 DB에서 가져와야 하나,
        //현재 DB에 authorities가 없어서 임의로 ROLE_ADMIN을 부여
        List<GrantedAuthority> authorities = new ArrayList<>();
        authorities.add(new SimpleGrantedAuthority("ROLE_ADMIN"));

        return RlandUserDetails.builder()
                .id(member.getId())
                .username(member.getUsername())
                .password(member.getPwd())
                .email(member.getEmail())
                .authorities(authorities)
                .build();
    }
}