Konkuk-KUIT · ParkSeongGeun · Sep 27, 2025 · Sep 27, 2025 · Sep 29, 2025 · Sep 29, 2025
diff --git a/.idea/inspectionProfiles/Project_Default.xml b/.idea/inspectionProfiles/Project_Default.xml
diff --git a/.idea/vcs.xml b/.idea/vcs.xml
diff --git a/build.gradle b/build.gradle
@@ -12,6 +12,8 @@ repositories {
 dependencies {
     testImplementation platform('org.junit:junit-bom:5.10.0')
     testImplementation 'org.junit.jupiter:junit-jupiter'
+
+    testImplementation 'org.mockito:mockito-junit-jupiter:5.12.0'
 }
 
 test {

diff --git a/src/main/java/controller/Controller.java b/src/main/java/controller/Controller.java
@@ -0,0 +1,10 @@
+package controller;
+
+import http.HttpRequest;
+import http.HttpResponse;
+
+import java.io.IOException;
+
+public interface Controller {
+    void execute(HttpRequest request, HttpResponse response) throws IOException;
+}
diff --git a/src/main/java/controller/ForwardController.java b/src/main/java/controller/ForwardController.java
@@ -0,0 +1,41 @@
+package controller;
+
+import http.HttpRequest;
+import http.HttpResponse;
+import http.enums.RequestPath;
+
+import java.io.IOException;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+public class ForwardController implements Controller {
+    private static final Logger log = Logger.getLogger(ForwardController.class.getName());
+
+    @Override
+    public void execute(HttpRequest request, HttpResponse response) throws IOException {
+        String path = request.getPath();
+
+        // 1. 루트 경로 ("/") 처리 - 기본 페이지로 변경
+        if (path.equals(RequestPath.ROOT.getValue())) {
+            path = RequestPath.INDEX.getValue();
+        }
+
+        // 2. 보안 검증 - ../ 과 같은 디렉토리 traversal 공격 방지
+        if (path.contains("..")) {
+            log.log(Level.WARNING, "Directory traversal attack detected: " + path);
+            response.notFound();
+            return;
+        }
+
+        try {
+            // 3. 파일 forward
+            response.forward(path);
+            log.log(Level.INFO, "Static file served successfully: " + path);
+
+        } catch (IOException fileException) {
+            // 4. 파일이 없거나 읽기 실패시 404 에러 응답
+            log.log(Level.WARNING, "File not found or read error: " + path);
+            response.notFound();
+        }
+    }
+}
diff --git a/src/main/java/controller/UserListController.java b/src/main/java/controller/UserListController.java
@@ -0,0 +1,29 @@
+package controller;
+
+import http.HttpRequest;
+import http.HttpResponse;
+import http.enums.RequestPath;
+
+import java.io.IOException;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+public class UserListController implements Controller {
+    private static final Logger log = Logger.getLogger(UserListController.class.getName());
+
+    @Override
+    public void execute(HttpRequest request, HttpResponse response) throws IOException {
+        // Cookie에서 로그인 상태 확인
+        String logined = request.getCookie("logined");
+
+        if (logined != null) {
+            // 로그인된 사용자: user/list.html 파일 forward
+            log.log(Level.INFO, "Logged in user accessing user list");
+            response.forward(RequestPath.USER_LIST_HTML.getValue());
+        } else {
+            // 비로그인 상태: 로그인 페이지로 리다이렉트
+            log.log(Level.INFO, "Non-logged user redirected to login page");
+            response.redirect(RequestPath.USER_LOGIN_HTML.getValue());
+        }
+    }
+}
diff --git a/src/main/java/controller/UserLoginController.java b/src/main/java/controller/UserLoginController.java
@@ -0,0 +1,51 @@
+package controller;
+
+import db.MemoryUserRepository;
+import http.HttpRequest;
+import http.HttpResponse;
+import http.enums.RequestPath;
+import model.User;
+import model.UserField;
+
+import java.io.IOException;
+import java.util.Map;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+public class UserLoginController implements Controller {
+    private static final Logger log = Logger.getLogger(UserLoginController.class.getName());
+
+    @Override
+    public void execute(HttpRequest request, HttpResponse response) throws IOException {
+        Map<String, String> params = request.getParameters();
+
+        String userId = params.get(UserField.USER_ID.getValue());
+        String password = params.get(UserField.PASSWORD.getValue());
+
+        if (userId != null && !userId.isEmpty()) {
+            log.log(Level.INFO, "Login attempt: " + userId);
+        }
+
+        // 파라미터 유효성 검사
+        if (userId == null || userId.isEmpty() || password == null || password.isEmpty()) {
+            log.log(Level.WARNING, "Login failed: missing parameters");
+            response.redirect(RequestPath.USER_LOGIN_FAILED.getValue());
+            return;
+        }
+
+        // MemoryUserRepository에서 사용자 조회
+        MemoryUserRepository repository = MemoryUserRepository.getInstance();
+        User user = repository.findUserById(userId);
+
+        // 인증 검증
+        if (user != null && user.getPassword().equals(password)) {
+            // 로그인 성공: Cookie 설정 + 메인페이지로 리다이렉트
+            log.log(Level.INFO, "Login successful: " + userId);
+            response.redirectWithCookie(RequestPath.INDEX.getValue(), "logined=true");
+        } else {
+            // 로그인 실패: 에러페이지로 리다이렉트
+            log.log(Level.WARNING, "Login failed: " + userId);
+            response.redirect(RequestPath.USER_LOGIN_FAILED.getValue());
+        }
+    }
+}
diff --git a/src/main/java/controller/UserSignupController.java b/src/main/java/controller/UserSignupController.java
@@ -0,0 +1,50 @@
+package controller;
+
+import db.MemoryUserRepository;
+import http.HttpRequest;
+import http.HttpResponse;
+import http.enums.HttpMethod;
+import http.enums.RequestPath;
+import model.User;
+import model.UserField;
+
+import java.io.IOException;
+import java.util.Map;
+import java.util.logging.Level;
+import java.util.logging.Logger;
+
+public class UserSignupController implements Controller {
+    private static final Logger log = Logger.getLogger(UserSignupController.class.getName());
+
+    @Override
+    public void execute(HttpRequest request, HttpResponse response) throws IOException {
+        // 파라미터 추출
+        Map<String, String> params = request.getParameters();
+        log.log(Level.INFO, "POST Signup params: " + params);
+
+        // 필수 필드 검증
+        String userId = params.get (UserField.USER_ID.getValue());
+        String password = params.get (UserField. PASSWORD.getValue());
+        String name = params.get (UserField.NAME.getValue());
+        String email = params.get (UserField.EMAIL.getValue());
+
+        if (userId == null || userId.trim().isEmpty() ||
+                password == null || password. length() < 4 ||
+                name == null || name.trim().isEmpty() ||
+                email == null || !email.matches("^[A-Za-z0-9+_.-]+@[A-Za-z0-9.-]+$")) {
+            // TODO: Bad Request
+            return;
+        }
+
+        // User 객체 생성
+        User newUser = new User(userId, password, name, email);
+
+        // 메모리 저장소에 저장
+        MemoryUserRepository repository = MemoryUserRepository.getInstance();
+        repository.addUser(newUser);
+        log.log(Level.INFO, "New User Registered: " + newUser.getUserId());
+
+        // 302 리다이렉트로 메인 페이지로 이동
+        response.redirect(RequestPath.INDEX.getValue());
+    }
+}
diff --git a/src/main/java/http/HttpHeaders.java b/src/main/java/http/HttpHeaders.java
@@ -0,0 +1,56 @@
+package http;
+
+import http.enums.HttpHeader;
+
+import java.io.BufferedReader;
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.Map;
+
+public class HttpHeaders {
+    private final Map<String, String> headers;
+
+    public HttpHeaders(Map<String, String> headers) {
+        this.headers = new HashMap<>(headers);
+    }
+
+    public static HttpHeaders from(BufferedReader br) throws IOException {
+        Map<String, String> headerMap = new HashMap<>();
+
+        String line;
+        while ((line = br.readLine()) != null && !line.isEmpty()) {
+            int colonIndex = line.indexOf(":");
+            if (colonIndex != -1) {
+                String key = line.substring(0, colonIndex).trim().toLowerCase();
+                String value = line.substring(colonIndex + 1).trim();
+                headerMap.put(key, value);
+            }
+        }
+
+        return new HttpHeaders(headerMap);
+    }
+
+    public String getHeader(HttpHeader header) {
+        return headers.get(header.getValue().toLowerCase());
+    }
+
+    public String getHeader(String headerName) {
+        return headers.get(headerName.toLowerCase());
+    }
+
+    public int getContentLength() {
+        String contentLength = getHeader(HttpHeader.CONTENT_LENGTH);
+        if (contentLength == null) {
+            return 0;
+        }
+        try {
+            return Integer.parseInt(contentLength);
+        } catch (NumberFormatException e) {
+            return 0;
+        }
+    }
+
+    public String getCookie() {
+        return getHeader(HttpHeader.COOKIE);
+    }
+}
diff --git a/src/main/java/http/HttpRequest.java b/src/main/java/http/HttpRequest.java
@@ -0,0 +1,107 @@
+package http;
+
+import http.enums.HttpMethod;
+import http.util.HttpRequestUtils;
+import http.util.IOUtils;
+
+import java.io.BufferedReader;
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.Map;
+
+public class HttpRequest {
+    private final HttpStartLine startLine;
+    private final HttpHeaders headers;
+    private final String body;
+
+    private HttpRequest(HttpStartLine startLine, HttpHeaders headers, String body) {
+        this.startLine = startLine;
+        this.headers = headers;
+        this.body = body;
+    }
+
+    public static HttpRequest from(BufferedReader br) throws IOException {
+        String requestLine = br.readLine();
+        if (requestLine == null || requestLine.isEmpty()) {
+            throw new IllegalArgumentException("Request line cannot be null or empty");
+        }
+
+        HttpStartLine startLine = HttpStartLine.from(requestLine);
+        HttpHeaders headers = HttpHeaders.from(br);
+
+        String body = null;
+        if (startLine.getMethod() == HttpMethod.POST && headers.getContentLength() > 0) {
+            body = IOUtils.readData(br, headers.getContentLength());
+        }
+
+        return new HttpRequest(startLine, headers, body);
+    }
+
+    public HttpMethod getMethod() {
+        return startLine.getMethod();
+    }
+
+    public String getUrl() {
+        return startLine.getPath();
+    }
+
+    public String getPath() {
+        return startLine.getPathWithoutQuery();
+    }
+
+    public String getQueryString() {
+        return startLine.getQueryString();
+    }
+
+    public String getVersion() {
+        return startLine.getVersion();
+    }
+
+    public String getHeader(String headerName) {
+        return headers.getHeader(headerName);
+    }
+
+    public String getCookie() {
+        return headers.getCookie();
+    }
+
+    public String getCookie(String key) {
+        String cookieHeader = headers.getCookie();
+        if (cookieHeader == null) {
+            return null;
+        }
+
+        for (String pair : cookieHeader.split(";\\s*")) {
+            String[] kv = pair.split("=", 2);
+            if (kv.length == 2 && kv[0].equals(key)) {
+                return kv[1];
+            }
+        }
+        return null;
+    }
+
+    public int getContentLength() {
+        return headers.getContentLength();
+    }
+
+    public String getBody() {
+        return body;
+    }
+
+    public HttpStartLine getStartLine() {
+        return startLine;
+    }
+
+    public HttpHeaders getHeaders() {
+        return headers;
+    }
+
+    public Map<String, String> getParameters() {
+        if (startLine.getMethod() == HttpMethod.GET && getQueryString() != null) {
+            return HttpRequestUtils.parseQueryParameter(getQueryString());
+        } else if (startLine.getMethod() == HttpMethod.POST && body != null) {
+            return HttpRequestUtils.parseQueryParameter(body);
+        }
+        return new HashMap<>();
+    }
+}