-
- SecurityConfig: STATELESS, permitAll /api/auth/**, JWT filter - JwtAuthenticationFilter: Bearer token → SecurityContext - AuthController: POST /login, POST /refresh, GET /brands - BrandVO: @JsonProperty to fix Jackson serialization of sNo/sName - AuthControllerTest: 4/4 PASS; all 22 backend tests GREEN
-
- LoginReqDTO/RefreshTokenReqDTO/LoginVO/BrandVO DTO/VO - AuthService interface: login/refresh/getBrands - AuthServiceImpl: multi-tenant brand query, BCrypt, disabled/lock check, fail count (5x → lock 30min), success reset; refresh token validate + re-issue; getBrands ORDER BY sName - UpdateWrapper (string columns) avoids LambdaWrapper unit test issue - BeanConfig: @Bean BCryptPasswordEncoder - AuthServiceTest: 10/10 PASS (7 login + 3 refresh/brands)
-
- BrandEntity/UsrUserEntity: @TableName + @TableField (map-underscore-to-camel-case=false) - BrandMapper/UsrUserMapper: extends BaseMapper - MyBatisPlusConfig: @MapperScan + PaginationInnerInterceptor - BrandMapperTest: insert/query/delete against test DB PASS
-
- JwtProperties: @ConfigurationProperties("jwt") with secret/expiry - JwtUtil: generateAccessToken/generateRefreshToken/parseAccessToken/parseRefreshToken - parseRefreshToken validates type=refresh claim, throws 40103 if mismatch - JwtUtilTest: 3 tests PASS
