SEEAT-BE/src/main/java/com/seeat/server/security/handler/CustomOAuth2SuccessHandler.java at 333ec3dd1c49addbe0efe62de25102adfa206f98 · Leets-Official/SEEAT-BE · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
package com.seeat.server.security.handler;

import com.seeat.server.global.response.CustomException;
import com.seeat.server.global.response.ErrorCode;
import com.seeat.server.global.util.RedisKeyUtil;
import com.seeat.server.security.jwt.service.TokenService;
import com.seeat.server.security.oauth2.application.dto.TempUserInfo;
import com.seeat.server.security.oauth2.application.dto.response.CustomUserInfo;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import lombok.RequiredArgsConstructor;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.security.core.Authentication;
import org.springframework.security.web.DefaultRedirectStrategy;
import org.springframework.security.web.RedirectStrategy;
import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
import org.springframework.stereotype.Component;

import java.io.IOException;
import java.time.Duration;

@Component
@RequiredArgsConstructor
public class CustomOAuth2SuccessHandler implements AuthenticationSuccessHandler {

    private final RedirectStrategy redirectStrategy = new DefaultRedirectStrategy();
    private final RedisTemplate<String, Object> redisTemplate;
    @Value("${cors.front.local}")
    private String frontLocalUrl;
    @Value("${cors.front.dev}")
    private String frontDevUrl;
    @Value("${spring.profiles.active:local}")
    private String activeProfile;
    private final TokenService tokenService;


    @Override
    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response,
                                        Authentication authentication) {

        CustomUserInfo userInfo = (CustomUserInfo) authentication.getPrincipal();

        String origin = request.getHeader("Origin");
        String frontUrl = frontDevUrl;

        if (origin != null) {
            if (frontLocalUrl.equals(origin)) {
                frontUrl = frontLocalUrl;
            } else if (frontDevUrl.equals(origin)) {
                frontUrl = frontDevUrl;
            }
        }

        try {
            switch (userInfo.getStatus()) {
                case EXISTING_USER -> {
                    tokenService.generateTokensAndSetHeaders(response, userInfo.getUser());
                    response.sendRedirect(frontUrl + "/home");  // changed here
                }
                case NEW_USER -> {
                    String tempUserKey = RedisKeyUtil.generateOAuth2TempUserKey();

                    TempUserInfo tempUserInfo = new TempUserInfo(
                            userInfo.getTempUserInfo().getEmail(),
                            userInfo.getTempUserInfo().getProviderId(),
                            userInfo.getSocial(),
                            userInfo.getTempUserInfo().getNickname()
                    );

                    redisTemplate.opsForValue().set(tempUserKey, tempUserInfo, Duration.ofMinutes(10));

                    String extraInfoUrl = frontUrl + "/extra-info?tempKey=" + tempUserKey;

                    response.sendRedirect(extraInfoUrl);  // changed here
                }
                case EMAIL_DUPLICATE -> {
                    response.sendRedirect(frontUrl + "/login/duplicate-email"); // changed here
                }
                default -> {
                    throw new CustomException(ErrorCode.OAUTH2_UNKNOWN_STATUS, null);
                }
            }
        } catch (IOException e) {
            throw new RuntimeException(e);
        }
    }

}