Merge pull request #53 from What-s-Your-Plan/feat/#41

로그인 로직 개발

Author: sjhjack

.github/workflows/backend-server-test.yml

@@ -27,7 +27,7 @@ jobs:
         run: chmod +x gradlew
 
       - name: 🧪 Spring Boot Test
-        run: ./gradlew clean test
+        run: ./gradlew clean test -i
 
       - name: Add coverage to PR
         id: jacoco
@@ -37,4 +37,4 @@ jobs:
           paths: ${{ github.workspace }}/**/reports/jacoco/test/jacocoTestReport.xml
           token: ${{ secrets.GITHUB_TOKEN }}
           min-coverage-overall: 80
-          min-coverage-changed-files: 80
+          min-coverage-changed-files: 80

application/application-common/build.gradle

@@ -6,5 +6,4 @@ java {
 
 dependencies {
     api('org.springframework.boot:spring-boot-starter-web')
-    api('org.springframework.boot:spring-boot-starter-test')
 }

application/wypl-core/build.gradle

@@ -16,8 +16,15 @@ dependencies {
     implementation project(':domain:jpamongo-review-domain')
     implementation project(':domain:jpa-calendar-domain')
     implementation project(':domain:jpa-member-domain')
+    implementation project(':domain:auth-domain')
     implementation project(':domain:redis-embedded-domain')
     implementation project(':common')
 
     implementation 'org.springframework.boot:spring-boot-starter-actuator'
+
+    /* API Docs */
+    testImplementation("com.epages:restdocs-api-spec-mockmvc:0.18.4")
+
+    /* Test */
+    testImplementation("org.springframework.restdocs:spring-restdocs-mockmvc")
 }

application/wypl-core/src/main/java/com/wypl/wyplcore/auth/AuthMemberServiceImpl.java

@@ -0,0 +1,50 @@
+package com.wypl.wyplcore.auth.controller;
+
+import org.springframework.web.bind.annotation.DeleteMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.PutMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;
+
+import com.wypl.applicationcommon.WyplResponseEntity;
+import com.wypl.googleoauthclient.annotation.Authenticated;
+import com.wypl.googleoauthclient.domain.AuthMember;
+import com.wypl.wyplcore.auth.data.response.AuthTokensResponse;
+import com.wypl.wyplcore.auth.service.AuthServiceImpl;
+
+import lombok.RequiredArgsConstructor;
+
+@RequiredArgsConstructor
+@RequestMapping("/auth")
+@RestController
+public class AuthController {
+	private final AuthServiceImpl authService;
+
+	@PostMapping("/v1/sign-in/{provider}")
+	public WyplResponseEntity<AuthTokensResponse> signIn(
+		@PathVariable("provider") String provider,
+		@RequestParam("code") String code
+	) {
+		AuthTokensResponse response = authService.generateToken(provider, code);
+		return WyplResponseEntity.ok(response, "로그인에 성공하였습니다.");
+	}
+
+	@PutMapping("/v1/reissue")
+	public WyplResponseEntity<AuthTokensResponse> reissue(
+		@RequestParam("access_token") String accessToken,
+		@RequestParam("refresh_token") String refreshToken
+	) {
+		AuthTokensResponse response = authService.reissueToken(accessToken, refreshToken);
+		return WyplResponseEntity.created(response, "토큰 재발급에 성공하였습니다.");
+	}
+
+	@DeleteMapping("/v1/logout")
+	public WyplResponseEntity<Void> logout(
+		@Authenticated AuthMember authMember
+	) {
+		authService.logout(authMember);
+		return WyplResponseEntity.ok("로그아웃에 성공하였습니다.");
+	}
+}

application/wypl-core/src/main/java/com/wypl/wyplcore/auth/controller/AuthController.java

@@ -0,0 +1,31 @@
+package com.wypl.wyplcore.auth.data.response;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.wypl.googleoauthclient.data.response.GoogleTokenResponse;
+
+import lombok.Builder;
+
+@Builder
+public record AuthTokensResponse(
+	@JsonProperty("member_id")
+	long memberId,
+	@JsonProperty("access_token")
+	String accessToken,
+	@JsonProperty("refresh_token")
+	String refreshToken
+) {
+	public static AuthTokensResponse of(long memberId, GoogleTokenResponse googleTokenResponse) {
+		return AuthTokensResponse.builder()
+			.memberId(memberId)
+			.accessToken(googleTokenResponse.accessToken())
+			.refreshToken(googleTokenResponse.refreshToken())
+			.build();
+	}
+
+	public static AuthTokensResponse of(String accessToken, String refreshToken) {
+		return AuthTokensResponse.builder()
+			.accessToken(accessToken)
+			.refreshToken(refreshToken)
+			.build();
+	}
+}

application/wypl-core/src/main/java/com/wypl/wyplcore/auth/data/response/AuthTokensResponse.java

@@ -0,0 +1,46 @@
+package com.wypl.wyplcore.auth.service;
+
+import org.springframework.stereotype.Component;
+
+import com.wypl.authdomain.auth.service.AuthDomainServiceImpl;
+import com.wypl.googleoauthclient.GoogleOAuthClient;
+import com.wypl.googleoauthclient.data.response.GoogleTokenValidationResponse;
+import com.wypl.googleoauthclient.domain.AuthMember;
+import com.wypl.googleoauthclient.exception.GoogleOAuthErrorCode;
+import com.wypl.googleoauthclient.exception.GoogleOAuthException;
+import com.wypl.googleoauthclient.service.AuthMemberService;
+import com.wypl.jpamemberdomain.member.domain.SocialMember;
+import com.wypl.jpamemberdomain.member.repository.SocialMemberRepository;
+import com.wypl.jpamemberdomain.member.utils.SocialMemberRepositoryUtils;
+
+import lombok.RequiredArgsConstructor;
+
+@Component
+@RequiredArgsConstructor
+public class AuthMemberServiceImpl implements AuthMemberService {
+	private final GoogleOAuthClient googleOAuthClient;
+	private final SocialMemberRepository socialMemberRepository;
+	private final AuthDomainServiceImpl authDomainService;
+
+	@Override
+	public AuthMember getValidatedMemberId(String accessToken) {
+		GoogleTokenValidationResponse response = getGoogleTokenValidationResponse(accessToken);
+
+		SocialMember socialMember = SocialMemberRepositoryUtils.getSocialMember(
+			socialMemberRepository,
+			response.userId());
+
+		return AuthMember.of(socialMember.getId(), accessToken);
+	}
+
+	private GoogleTokenValidationResponse getGoogleTokenValidationResponse(String accessToken) {
+		try {
+			return googleOAuthClient.validateToken(accessToken);
+		} catch (GoogleOAuthException e) {
+			if (authDomainService.checkExistsToken(accessToken)) {
+				throw new GoogleOAuthException(GoogleOAuthErrorCode.REFRESH_TOKEN);
+			}
+			throw new GoogleOAuthException(GoogleOAuthErrorCode.INVALID_TOKEN);
+		}
+	}
+}

application/wypl-core/src/main/java/com/wypl/wyplcore/auth/service/AuthMemberServiceImpl.java

@@ -0,0 +1,113 @@
+package com.wypl.wyplcore.auth.service;
+
+import java.time.LocalDate;
+
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import com.wypl.authdomain.auth.service.AuthDomainServiceImpl;
+import com.wypl.googleoauthclient.GoogleOAuthClient;
+import com.wypl.googleoauthclient.data.response.GoogleTokenResponse;
+import com.wypl.googleoauthclient.data.response.GoogleUserInfoResponse;
+import com.wypl.googleoauthclient.domain.AuthMember;
+import com.wypl.googleoauthclient.exception.GoogleOAuthErrorCode;
+import com.wypl.googleoauthclient.exception.GoogleOAuthException;
+import com.wypl.jpamemberdomain.member.OauthProvider;
+import com.wypl.jpamemberdomain.member.data.MemberSaveDto;
+import com.wypl.jpamemberdomain.member.data.SocialMemberSaveDto;
+import com.wypl.jpamemberdomain.member.repository.MemberRepository;
+import com.wypl.jpamemberdomain.member.repository.SocialMemberRepository;
+import com.wypl.jpamemberdomain.member.utils.SocialMemberRepositoryUtils;
+import com.wypl.wyplcore.auth.data.response.AuthTokensResponse;
+
+import lombok.RequiredArgsConstructor;
+
+@Transactional(readOnly = true)
+@RequiredArgsConstructor
+@Service
+public class AuthServiceImpl {
+	private final GoogleOAuthClient googleOAuthClient;
+	private final SocialMemberRepository socialMemberRepository;
+	private final MemberRepository memberRepository;
+	private final AuthDomainServiceImpl authDomainService;
+
+	@Transactional
+	public AuthTokensResponse generateToken(final String provider, final String code) {
+		GoogleTokenResponse googleTokenResponse = googleOAuthClient.fetchGoogleOAuthToken(code);
+
+		GoogleUserInfoResponse googleUserInfoResponse = googleOAuthClient.fetchUserInfo(
+			googleTokenResponse.accessToken());
+
+		long memberId = findMemberIdAfterSaveMember(googleTokenResponse.accessToken(), googleUserInfoResponse);
+
+		authDomainService.saveToken(googleTokenResponse.accessToken(), googleTokenResponse.refreshToken());
+
+		return AuthTokensResponse.of(memberId, googleTokenResponse);
+	}
+
+	@Transactional
+	public AuthTokensResponse reissueToken(final String accessToken, final String refreshToken) {
+		if (isInvalidRefreshToken(accessToken, refreshToken)) {
+			throw new GoogleOAuthException(GoogleOAuthErrorCode.NOT_AUTHORIZATION_MEMBER);
+		}
+
+		GoogleTokenResponse googleTokenResponse = googleOAuthClient.fetchRefreshGoogleOAuthToken(refreshToken);
+
+		authDomainService.deleteToken(accessToken);
+		authDomainService.saveToken(googleTokenResponse.accessToken(), refreshToken);
+
+		return AuthTokensResponse.of(googleTokenResponse.accessToken(), refreshToken);
+	}
+
+	@Transactional
+	public void logout(AuthMember authMember) {
+		deleteToken(authMember);
+	}
+
+	@Transactional
+	public void quitMember(AuthMember authMember) {
+		// Todo : 회원 탈퇴 로직 논의
+		deleteToken(authMember);
+		deleteMember(authMember);
+	}
+
+	private void deleteToken(AuthMember authMember) {
+		authDomainService.deleteToken(authMember.accessToken());
+	}
+
+	private void deleteMember(AuthMember authMember) {
+		memberRepository.deleteById(authMember.id());
+	}
+
+	private boolean isInvalidRefreshToken(String accessToken, String refreshToken) {
+		return refreshToken.isEmpty() || !refreshToken.equals(authDomainService.getRefreshToken(accessToken));
+	}
+
+	private long findMemberIdAfterSaveMember(String accessToken, GoogleUserInfoResponse googleUserInfoResponse) {
+		if (isNewMember(googleUserInfoResponse)) {
+			LocalDate birthday = googleOAuthClient.fetchBirthday(accessToken);
+
+			MemberSaveDto memberSaveDto = MemberSaveDto.builder()
+				.email(googleUserInfoResponse.email())
+				.birthday(birthday)
+				.nickname(googleUserInfoResponse.name())
+				.profileImage(googleUserInfoResponse.picture())
+				.build();
+
+			SocialMemberSaveDto socialMemberSaveDto = SocialMemberSaveDto.builder()
+				.oauthProvider(OauthProvider.GOOGLE)
+				.oauthId(googleUserInfoResponse.id())
+				.build();
+
+			return authDomainService.saveAuthData(memberSaveDto, socialMemberSaveDto);
+		}
+
+		return SocialMemberRepositoryUtils.getSocialMember(socialMemberRepository, googleUserInfoResponse.id()).getId();
+	}
+
+	private boolean isNewMember(GoogleUserInfoResponse googleUserInfoResponse) {
+		return !socialMemberRepository.existsByOauthProviderAndOauthId(OauthProvider.GOOGLE,
+			googleUserInfoResponse.id());
+	}
+}
+

application/wypl-core/src/main/java/com/wypl/wyplcore/auth/service/AuthServiceImpl.java

@@ -0,0 +1,13 @@
+package com.wypl.wyplcore;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+import com.wypl.WyplCoreApplication;
+
+@SpringBootApplication
+public class WyplCoreTestApplication {
+	public static void main(String[] args) {
+		SpringApplication.run(WyplCoreApplication.class, args);
+	}
+}

application/wypl-core/src/test/java/com/wypl/wyplcore/WyplCoreTestApplication.java

@@ -18,10 +18,11 @@
 import com.wypl.googleoauthclient.data.response.GoogleTokenValidationResponse;
 import com.wypl.googleoauthclient.domain.AuthMember;
 import com.wypl.jpamemberdomain.member.OauthProvider;
-import com.wypl.jpamemberdomain.member.SocialMemberRepository;
+import com.wypl.jpamemberdomain.member.repository.SocialMemberRepository;
 import com.wypl.jpamemberdomain.member.domain.SocialMember;
 import com.wypl.jpamemberdomain.member.exception.MemberErrorCode;
 import com.wypl.jpamemberdomain.member.exception.MemberException;
+import com.wypl.wyplcore.auth.service.AuthMemberServiceImpl;
 
 @ExtendWith(MockitoExtension.class)
 class AuthMemberServiceImplTest {