Merge branch 'main' into develop

Author: zzdh8

src/main/java/com/univ/sohwakhaeng/auth/api/AuthController.java

@@ -1,16 +1,17 @@
 package com.univ.sohwakhaeng.auth.api;
 
 
+import com.univ.sohwakhaeng.auth.api.dto.KakaoLoginDto;
+import com.univ.sohwakhaeng.auth.api.dto.TokenDto;
+import com.univ.sohwakhaeng.auth.service.OAuth2LoginService;
 import com.univ.sohwakhaeng.global.common.dto.BaseResponse;
 import com.univ.sohwakhaeng.global.common.exception.SuccessCode;
-import jakarta.servlet.http.HttpServletResponse;
+import java.io.IOException;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
-import com.univ.sohwakhaeng.auth.api.dto.TokenDto;
-import com.univ.sohwakhaeng.auth.service.OAuth2LoginService;
-import org.springframework.web.bind.annotation.*;
-
-import java.io.IOException;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RestController;
 
 @RestController
 @Slf4j
@@ -19,11 +20,8 @@ public class AuthController {
 
     private final OAuth2LoginService oAuth2LoginService;
 
-    @GetMapping("/kakao")
-    public BaseResponse<Void> auth(@RequestParam(value = "code") String code, HttpServletResponse response) throws IOException {
-        String token = oAuth2LoginService.proccessOAuth2Login(code).accessToken();
-        String redirectUrl = "http://localhost:5173/main?token=" + token;
-        response.sendRedirect(redirectUrl);
-        return BaseResponse.success(SuccessCode.USER_LOGIN_SUCCESS);
+    @PostMapping("/public/login")
+    public BaseResponse<TokenDto> auth(@RequestBody KakaoLoginDto kakaoLoginDto) throws IOException {;
+        return BaseResponse.success(SuccessCode.USER_LOGIN_SUCCESS, oAuth2LoginService.proccessOAuth2Login(kakaoLoginDto));
     }
 }

src/main/java/com/univ/sohwakhaeng/auth/api/dto/KakaoLoginDto.java

@@ -0,0 +1,7 @@
+package com.univ.sohwakhaeng.auth.api.dto;
+
+public record KakaoLoginDto(
+        String providerId,
+        String nickname,
+        String profileUrl
+) {}

src/main/java/com/univ/sohwakhaeng/auth/api/dto/KakaoTokenDto.java

@@ -1,33 +1,19 @@
 package com.univ.sohwakhaeng.auth.domain;
 
 import com.univ.sohwakhaeng.user.User;
-import org.springframework.security.core.GrantedAuthority;
-import org.springframework.security.core.userdetails.UserDetails;
-import org.springframework.security.oauth2.core.user.OAuth2User;
-
 import java.util.ArrayList;
 import java.util.Collection;
-import java.util.Map;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.userdetails.UserDetails;
 
-public class PrincipalDetails implements UserDetails, OAuth2User {
+public class PrincipalDetails implements UserDetails {
 
     private final User user;
-    private OAuth2UserInfo oAuth2UserInfo;
 
     public PrincipalDetails(User user) {
         this.user = user;
     }
 
-    public PrincipalDetails(User user, OAuth2UserInfo oAuth2UserInfo) {
-        this.user = user;
-        this.oAuth2UserInfo = oAuth2UserInfo;
-    }
-
-    @Override
-    public Map<String, Object> getAttributes() {
-        return oAuth2UserInfo.getAttributes();
-    }
-
     @Override
     public Collection<? extends GrantedAuthority> getAuthorities() {
         Collection<GrantedAuthority> collection = new ArrayList<>();
@@ -66,11 +52,6 @@ public boolean isEnabled() {
         return UserDetails.super.isEnabled();
     }
 
-    @Override
-    public String getName() {
-        return user.getUsername();
-    }
-
     public User getUser() {
         return this.user;
     }

src/main/java/com/univ/sohwakhaeng/auth/domain/KakaoUserInfo.java

@@ -1,29 +1,19 @@
 package com.univ.sohwakhaeng.auth.service;
 
-import com.univ.sohwakhaeng.auth.api.dto.KakaoTokenDto;
-import com.univ.sohwakhaeng.auth.domain.KakaoUserInfo;
-import com.univ.sohwakhaeng.auth.domain.OAuth2UserInfo;
+import com.univ.sohwakhaeng.auth.api.dto.KakaoLoginDto;
+import com.univ.sohwakhaeng.auth.api.dto.TokenDto;
 import com.univ.sohwakhaeng.auth.jwt.TokenProvider;
 import com.univ.sohwakhaeng.user.Authority;
 import com.univ.sohwakhaeng.user.SocialType;
 import com.univ.sohwakhaeng.user.User;
 import com.univ.sohwakhaeng.user.repository.UserRepository;
 import lombok.RequiredArgsConstructor;
-import com.univ.sohwakhaeng.auth.api.dto.TokenDto;
-import org.springframework.beans.factory.annotation.Value;
-import org.springframework.http.MediaType;
-import org.springframework.http.ResponseEntity;
 import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
-import org.springframework.util.LinkedMultiValueMap;
-import org.springframework.util.MultiValueMap;
-import org.springframework.web.client.RestClient;
-
-import java.util.Map;
 
 @Service
 @RequiredArgsConstructor
@@ -34,68 +24,30 @@ public class OAuth2LoginService {
     private final AuthenticationManagerBuilder authenticationManagerBuilder;
     private final TokenProvider tokenProvider;
 
-    @Value("${KAKAO_CLIENT_ID}")
-    private String kakaoClientId;
-
-    @Value("${KAKAO_CLIENT_SECRET}")
-    private String kakaoClientSecret;
-
-    @Value("${REDIRECT_URL_KAKAO}")
-    private String redirectUrlKakao;
-
-    private static final String AUTHORIZATION_CODE = "authorization_code";
-
     @Transactional
-    public TokenDto proccessOAuth2Login(String code) {
-        KakaoTokenDto kakaoTokenDto = getToken(code, kakaoClientId, kakaoClientSecret, redirectUrlKakao,
-                "https://kauth.kakao.com/oauth/token", KakaoTokenDto.class);
-        Map<String, Object> attributes = getUserInfo(kakaoTokenDto.accessToken(), "https://kapi.kakao.com/v2/user/me");
-        return authenticateUser(new KakaoUserInfo(attributes));
+    public TokenDto proccessOAuth2Login(KakaoLoginDto kakaoLoginDto) {
+        return authenticateUser(kakaoLoginDto);
     }
 
-    private <T> T getToken(String code, String clientId, String clientSecret, String redirectUri, String tokenUri,
-                           Class<T> responseType) {
-        MultiValueMap<String, String> params = new LinkedMultiValueMap<>();
-        params.add("grant_type", AUTHORIZATION_CODE);
-        params.add("client_id", clientId);
-        params.add("redirect_uri", redirectUri);
-        params.add("code", code);
-        params.add("client_secret", clientSecret);
-        ResponseEntity<T> response = RestClient.create().post()
-                .uri(tokenUri)
-                .accept(MediaType.APPLICATION_JSON)
-                .body(params)
-                .retrieve()
-                .toEntity(responseType);
-        return response.getBody();
-    }
-
-    private Map<String, Object> getUserInfo(String accessToken, String userInfoUri) {
-        ResponseEntity<Map> response = RestClient.create().get()
-                .uri(userInfoUri)
-                .header("Authorization", "Bearer " + accessToken)
-                .retrieve()
-                .toEntity(Map.class);
-        return response.getBody();
+    private TokenDto authenticateUser(KakaoLoginDto kakaoLoginDto) {
+        User user = getUserDomain(kakaoLoginDto);
+        Authentication authentication = authenticationManagerBuilder.getObject().authenticate(
+                new UsernamePasswordAuthenticationToken(user.getUsername(),
+                        kakaoLoginDto.providerId() + kakaoLoginDto.nickname())
+        );
+        return tokenProvider.generateTokenDto(authentication);
     }
 
-    private TokenDto authenticateUser(OAuth2UserInfo oAuth2userInfo) {
-        User user = userRepository.findByUsername(oAuth2userInfo.getProviderId())
+    private User getUserDomain(KakaoLoginDto kakaoLoginDto) {
+        return userRepository.findByUsername(kakaoLoginDto.providerId())
                 .orElseGet(() -> userRepository.save(User.builder() // <- DB에 사용자의 정보가 없다면 자동 회원가입
-                        .username(oAuth2userInfo.getProviderId())
-                        .name(oAuth2userInfo.getName())
-                        .nickname(oAuth2userInfo.getName())
-                        .password(passwordEncoder.encode(oAuth2userInfo.getProviderId() + oAuth2userInfo.getName()))
-                        .socialType(SocialType.of(oAuth2userInfo.getProvider()))
+                        .username(kakaoLoginDto.providerId())
+                        .name(kakaoLoginDto.nickname())
+                        .nickname(kakaoLoginDto.nickname())
+                        .password(passwordEncoder.encode(kakaoLoginDto.providerId() + kakaoLoginDto.nickname()))
+                        .socialType(SocialType.of("kakao"))
                         .authority(Authority.ROLE_USER)
-                        .profileImgUrl(oAuth2userInfo.getProfileImage())
+                        .profileImgUrl(kakaoLoginDto.profileUrl())
                         .build()));
-
-        Authentication authentication = authenticationManagerBuilder.getObject().authenticate(
-                new UsernamePasswordAuthenticationToken(user.getUsername(),
-                        oAuth2userInfo.getProviderId() + oAuth2userInfo.getName())
-        );
-
-        return tokenProvider.generateTokenDto(authentication);
     }
 }

src/main/java/com/univ/sohwakhaeng/auth/domain/OAuth2UserInfo.java

@@ -54,7 +54,6 @@ cloud:
       static: ${AWS_REGION}
     stack:
       auto: false
-
 iamport:
   apikey: ${IAMPORT_API_KEY}
-  secretkey: ${IAMPORT_SECRET_KEY}
+  secretkey: ${IAMPORT_SECRET_KEY}