From 0448782b7e941533bb5830bc4da57e31bedda679 Mon Sep 17 00:00:00 2001
From: Seoyoung <ryupark1006@gmail.com>
Date: Sun, 20 Nov 2022 00:11:10 +0900
Subject: [PATCH] #31 Feat: Add password encryption

---
 src/main/java/com/umc/board/UserService.java | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/src/main/java/com/umc/board/UserService.java b/src/main/java/com/umc/board/UserService.java
index 4db7d17..2548c95 100644
--- a/src/main/java/com/umc/board/UserService.java
+++ b/src/main/java/com/umc/board/UserService.java
@@ -6,6 +6,8 @@
 
 import java.util.List;
 
+import static org.apache.tomcat.util.net.openssl.ciphers.Encryption.AES128;
+
 @Service
 public class UserService {
     private final UserDao userDao;
@@ -29,6 +31,14 @@ public PostUserRes createUser(PostUserReq postUserReq) throws Exception{
         if (checkEmail(postUserReq.getEmail()) == 1) {
             throw new Exception("이미 존재하는 이메일");
         }
+
+        try {
+            String password = new AES128(Secret.USER_INFO_PASSWORD_KEY).encrypt(postUserReq.getPassword());
+            postUserReq.setPassword(password);
+        } catch (Exception e) {
+            throw new Exception("비밀번호 암호화 오류");
+        }
+
         try {
             int userIdx = userDao.createUser(postUserReq);
             return new PostUserRes(userIdx);
@@ -52,6 +62,12 @@ public void modifyUser(PatchUserReq patchUserReq) throws Exception{
     // 로그인
     public PostLoginRes logIn(PostLoginReq postLoginReq) throws Exception {
         User user = userDao.getPassword(postLoginReq);
+        try {
+            String password = new AES128(Secret.USER_INFO_PASSWORD_KEY).decrypt(user.getPassword());
+        } catch (Exception e) {
+            throw new Exception("비밀번호 암호화 오류");
+        }
+
         if (postLoginReq.getPassword().equals(user.getPassword())) {
             int userIdx = userDao.getPassword(postLoginReq).getUserIdx();
             return new PostLoginRes(userIdx);