feat: 어드민 기능 구현 (#44)

* refactor: UserDetails 생성 시 PrincipalDetails 사용하도록 변경

* feat: 어드민 전체 회원 조회 구현

* feat: 어드민 특정 회원 삭제 구현

Author: ht3064

src/main/java/com/amcamp/domain/admin/api/AdminController.java

@@ -0,0 +1,28 @@
+package com.amcamp.domain.admin.api;
+
+import com.amcamp.domain.admin.application.AdminService;
+import com.amcamp.domain.admin.dto.response.MemberInfoResponse;
+import lombok.RequiredArgsConstructor;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.*;
+
+import java.util.List;
+
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/admin")
+public class AdminController {
+
+    private final AdminService adminService;
+
+    @GetMapping("/members")
+    public List<MemberInfoResponse> memberListInfo() {
+        return adminService.getMemberList();
+    }
+
+    @DeleteMapping("/members/{memberId}")
+    public ResponseEntity<Void> memberDelete(@PathVariable Long memberId) {
+        adminService.deleteMember(memberId);
+        return ResponseEntity.ok().build();
+    }
+}

src/main/java/com/amcamp/domain/admin/application/AdminService.java

@@ -0,0 +1,35 @@
+package com.amcamp.domain.admin.application;
+
+import com.amcamp.domain.admin.dto.response.MemberInfoResponse;
+import com.amcamp.domain.member.dao.MemberRepository;
+import com.amcamp.domain.member.domain.Member;
+import com.amcamp.global.error.exception.CustomException;
+import com.amcamp.global.error.exception.ErrorCode;
+import lombok.RequiredArgsConstructor;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import java.util.List;
+
+@Transactional
+@Service
+@RequiredArgsConstructor
+public class AdminService {
+
+    private final MemberRepository memberRepository;
+
+    @Transactional(readOnly = true)
+    public List<MemberInfoResponse> getMemberList() {
+        return memberRepository.findAll()
+                .stream()
+                .map(MemberInfoResponse::from)
+                .toList();
+    }
+
+    public void deleteMember(Long memberId) {
+        Member member = memberRepository.findById(memberId)
+                .orElseThrow(() -> new CustomException(ErrorCode.MEMBER_NOT_FOUND));
+
+        memberRepository.delete(member);
+    }
+}

src/main/java/com/amcamp/domain/admin/dto/response/MemberInfoResponse.java

@@ -0,0 +1,14 @@
+package com.amcamp.domain.admin.dto.response;
+
+import com.amcamp.domain.member.domain.Member;
+import com.amcamp.domain.member.domain.MemberRole;
+
+public record MemberInfoResponse(
+        Long memberId,
+        String nickname,
+        String profileImageUrl,
+        MemberRole role) {
+    public static MemberInfoResponse from(Member member) {
+        return new MemberInfoResponse(member.getId(), member.getNickname(), member.getProfileImageUrl(), member.getRole());
+    }
+}

src/main/java/com/amcamp/global/config/security/WebSecurityConfig.java

@@ -39,6 +39,8 @@ public SecurityFilterChain defaultSecurityFilterChain(HttpSecurity http) throws
         http.authorizeHttpRequests(
                 auth ->
                         auth
+                                .requestMatchers("/admin/**")
+                                .hasRole("ADMIN")
                                 .requestMatchers("/**")
                                 .permitAll()
                                 .anyRequest()

src/main/java/com/amcamp/global/security/JwtAuthenticationFilter.java

@@ -14,7 +14,6 @@
 import org.springframework.http.HttpHeaders;
 import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
 import org.springframework.security.core.context.SecurityContextHolder;
-import org.springframework.security.core.userdetails.User;
 import org.springframework.security.core.userdetails.UserDetails;
 import org.springframework.web.filter.OncePerRequestFilter;
 import org.springframework.web.util.WebUtils;
@@ -71,11 +70,7 @@ protected void doFilterInternal(
     }
 
     private void setAuthenticationToken(Long memberId, MemberRole role) {
-        UserDetails userDetails =
-                User.withUsername(memberId.toString())
-                        .authorities(role.toString())
-                        .password("")
-                        .build();
+        UserDetails userDetails = new PrincipalDetails(memberId, role);
 
         UsernamePasswordAuthenticationToken token =
                 new UsernamePasswordAuthenticationToken(

src/main/java/com/amcamp/global/security/PrincipalDetails.java

@@ -0,0 +1,51 @@
+package com.amcamp.global.security;
+
+import com.amcamp.domain.member.domain.MemberRole;
+import lombok.AllArgsConstructor;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
+
+import java.util.Collection;
+import java.util.Collections;
+
+@AllArgsConstructor
+public class PrincipalDetails implements UserDetails {
+
+    private final Long memberId;
+    private final MemberRole memberRole;
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return Collections.singletonList((GrantedAuthority) () -> "ROLE_" + memberRole.toString());
+    }
+
+    @Override
+    public String getPassword() {
+        return null;
+    }
+
+    @Override
+    public String getUsername() {
+        return memberId.toString();
+    }
+
+    @Override
+    public boolean isAccountNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isAccountNonLocked() {
+        return true;
+    }
+
+    @Override
+    public boolean isCredentialsNonExpired() {
+        return true;
+    }
+
+    @Override
+    public boolean isEnabled() {
+        return true;
+    }
+}