24.10.29 authguard 수정 및 CI/CD

Author: happbob

.github/workflows/dev.yml

@@ -0,0 +1,78 @@
+# This workflow will do a clean install of node dependencies, cache/restore them, build the source code and run tests across different versions of node
+# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions
+
+name: dev-deploy
+
+on:
+  push:
+    branches: ['dev']
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+
+    strategy:
+      matrix:
+        node-version: [20.16.0]
+        # See supported Node.js release schedule at https://nodejs.org/en/about/releases/
+
+    steps:
+      - name: Checkout source code.
+        uses: actions/checkout@v2
+
+      - name: Use Node.js ${{ matrix.node-version }}
+        uses: actions/setup-node@v2
+        with:
+          node-version: ${{ matrix.node-version }}
+
+      - name: Check Npm -v
+        run: npm -v
+
+      - name: create env file
+        working-directory: ./
+        run: |
+          echo "DB_HOST=${{secrets.DEV_DB_HOST}}" >> .env
+          echo "DB_USER=${{ secrets.DB_USER }}" >> .env
+          echo "DB_PASSWORD=${{ secrets.DB_PASSWORD }}" >> .env
+          echo "DB_DATABASE=${{ secrets.DEV_DB_DATABASE }}" >> .env
+          echo "JWT_SECRET=${{ secrets.JWT_SECRET }}" >> .env
+          echo "JWT_EXPIRATION=${{ secrets.JWT_EXPIRATION }}" >> .env
+          echo "KAKAO_ID=${{ secrets.KAKAO_ID }}" >> .env
+          echo "KAKAO_SECRET=${{ secrets.KAKAO_SECRET }}" >> .env
+          echo "KAKAO_REDIRECT=${{ secrets.DEV_KAKAO_REDIRECT }}" >> .env
+          echo "NAVER_ID=${{ secrets.NAVER_ID }}" >> .env
+          echo "NAVER_SECRET=${{ secrets.NAVER_SECRET }}" >> .env
+          echo "NAVER_REDIRECT=${{ secrets.DEV_NAVER_REDIRECT }}" >> .env
+          echo "PORT"=${{ secrets.DEV_PORT }} >> .env
+
+      - name: copy appspec.yml
+        run: cp appspec/appspec-dev.yml appspec.yml
+
+      - name: copy scripts
+        run: cp dev-scripts/after-deploy.yml scripts/after-deploy.yml
+
+      - name: build server files
+        working-directory: ./
+        run: |
+          yarn install
+          yarn run build
+
+      - name: zip file
+        run: zip -r build.zip ./dist ./scripts ./appspec.yml ./.env ./package.json ./node_modules ./yarn.lock
+
+      - name: AWS configure credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: ap-northeast-2
+
+      - name: upload to S3
+        run: aws s3 cp --region ap-northeast-2 ./build.zip s3://oodd-dev-api-bucket/
+
+      - name: deploy with AWS codeDeploy
+        run: aws deploy create-deployment
+          --application-name nestjs-app-dev
+          --deployment-config-name CodeDeployDefault.OneAtATime
+          --deployment-group-name nestjs-app-dev-group
+          --s3-location bucket=oodd-dev-api-bucket,bundleType=zip,key=build.zip

appspec/appspec-dev.yml

@@ -0,0 +1,18 @@
+version: 0.0
+os: linux
+files:
+  - source: /
+    destination: /home/ubuntu/build-dev
+    overwrite: yes
+file_exists_behavior: OVERWRITE
+permissions:
+  - object: /home/ubuntu
+    pattern: '**'
+    owner: ubuntu
+    group: ubuntu
+
+hooks:
+  AfterInstall:
+    - location: scripts/after-deploy.sh
+      timeout: 60
+      runas: ubuntu

dev-scripts/after-deploy.sh

@@ -0,0 +1,16 @@
+#!/bin/bash
+REPOSITORY=/home/ubuntu/build
+APP_NAME=node_app_dev
+
+cd $REPOSITORY
+
+# Check if the app is already running
+if sudo pm2 list | grep $APP_NAME > /dev/null
+then
+  echo "$APP_NAME is already running. Restarting..."
+  sudo pm2 delete $APP_NAME
+  sudo pm2 start dist/app.js --name $APP_NAME
+else
+  echo "Starting $APP_NAME"
+  sudo pm2 start dist/app.js --name $APP_NAME
+fi

prod-scripts/after-deploy.sh

@@ -0,0 +1,16 @@
+#!/bin/bash
+REPOSITORY=/home/ubuntu/build
+APP_NAME=node_app_prod
+
+cd $REPOSITORY
+
+# Check if the app is already running
+if sudo pm2 list | grep $APP_NAME > /dev/null
+then
+  echo "$APP_NAME is already running. Restarting..."
+  sudo pm2 delete $APP_NAME
+  sudo pm2 start dist/app.js --name $APP_NAME
+else
+  echo "Starting $APP_NAME"
+  sudo pm2 start dist/app.js --name $APP_NAME
+fi

src/auth/auth.controller.ts

@@ -8,6 +8,7 @@ import { KakaoAuthGuard } from './guards/kakao.auth.guard';
 import { BaseResponse } from 'src/common/response/dto';
 import { LoginResponse } from './dto/auth.response';
 import { NaverAuthGuard } from './guards/naver.auth.guard';
+import { AuthGuard } from './guards/jwt.auth.guard';
 
 @Controller('auth')
 @ApiTags('[서비스] Auth 관련')
@@ -48,4 +49,11 @@ export class AuthController {
     const jwtToken = await this.authService.socialLogin(socialUser, 'naver');
     return new BaseResponse<LoginResponse>(true, 'SUCCESS', { jwt: jwtToken });
   }
+
+  @UseGuards(AuthGuard)
+  @Get('/test')
+  async test(@Req() req: Request) {
+    console.log(req.user);
+    return req.user;
+  }
 }

src/auth/auth.service.ts

@@ -25,7 +25,13 @@ export class AuthService {
     if (!userBySocial)
       return await this.userSerivce.createUserByKakaoOrNaver(user);
 
-    return await this.generateJwtToken(userBySocial);
+    return await this.generateJwtToken({
+      id: userBySocial.id,
+      email: userBySocial.email,
+      nickname: userBySocial.nickname,
+      kakaoId: userBySocial.kakaoId ? userBySocial.kakaoId : undefined,
+      naverId: userBySocial.naverId ? userBySocial.naverId : undefined,
+    });
   }
 
   async generateJwtToken(user: JwtPayload): Promise<string> {

src/auth/guards/jwt.auth.guard.ts

@@ -0,0 +1,12 @@
+import { ExecutionContext, Injectable } from '@nestjs/common';
+import { AuthGuard as NestAuthGuard } from '@nestjs/passport';
+import { Observable } from 'rxjs';
+
+@Injectable()
+export class AuthGuard extends NestAuthGuard('jwt') {
+  canActivate(
+    context: ExecutionContext,
+  ): boolean | Promise<boolean> | Observable<boolean> {
+    return super.canActivate(context);
+  }
+}

src/main.ts

@@ -7,7 +7,7 @@ async function bootstrap() {
   const app = await NestFactory.create(AppModule);
   app.useGlobalFilters(new ServiceExceptionToHttpExceptionFilter());
   setupSwagger(app);
-  await app.listen(8080);
+  await app.listen(process.env.PORT);
   console.log(`Application is running on: ${await app.getUrl()}`);
 }
 bootstrap();