restrict blog and post access to specified user

src/main/java/com/ippon/belt/repository/PostRepository.java

@@ -25,4 +25,6 @@ public interface PostRepository extends JpaRepository<Post, Long> {
 
     @Query("select post from Post post left join fetch post.tags where post.id =:id")
     Optional<Post> findOneWithEagerRelationships(@Param("id") Long id);
+
+    Page<Post> findByBlogUserLoginOrderByDateDesc(String currentUserLogin, Pageable pageable);
 }

src/main/java/com/ippon/belt/web/rest/BlogResource.java

@@ -148,7 +148,7 @@ public class BlogResource {
     @GetMapping("/blogs")
     public List<Blog> getAllBlogs() {
         log.debug("REST request to get all Blogs");
-        return blogRepository.findAll();
+        return blogRepository.findByUserIsCurrentUser();
     }
 
     /**

src/main/java/com/ippon/belt/web/rest/PostResource.java

@@ -2,6 +2,7 @@ package com.ippon.belt.web.rest;
 
 import com.ippon.belt.domain.Post;
 import com.ippon.belt.repository.PostRepository;
+import com.ippon.belt.security.SecurityUtils;
 import com.ippon.belt.web.rest.errors.BadRequestAlertException;
 import java.net.URI;
 import java.net.URISyntaxException;
@@ -162,12 +163,7 @@ public class PostResource {
         @RequestParam(required = false, defaultValue = "false") boolean eagerload
     ) {
         log.debug("REST request to get a page of Posts");
-        Page<Post> page;
-        if (eagerload) {
-            page = postRepository.findAllWithEagerRelationships(pageable);
-        } else {
-            page = postRepository.findAll(pageable);
-        }
+        Page<Post> page = postRepository.findByBlogUserLoginOrderByDateDesc(SecurityUtils.getCurrentUserLogin().orElse(null), pageable);
         HttpHeaders headers = PaginationUtil.generatePaginationHttpHeaders(ServletUriComponentsBuilder.fromCurrentRequest(), page);
         return ResponseEntity.ok().headers(headers).body(page.getContent());
     }