Merge pull request #209 from devping-kr/dev

deploy: 배포

Author: daeundada

build.gradle

@@ -59,6 +59,9 @@ dependencies {
     annotationProcessor "jakarta.annotation:jakarta.annotation-api"
     annotationProcessor "jakarta.persistence:jakarta.persistence-api"
 
+    //Oauth2.0
+    implementation 'org.springframework.boot:spring-boot-starter-oauth2-client'
+
     //Spring Rest Docs
     asciidoctorExt 'org.springframework.restdocs:spring-restdocs-asciidoctor'
     testImplementation 'org.springframework.restdocs:spring-restdocs-mockmvc'

src/main/java/devping/nnplanner/domain/auth/controller/AuthController.java

@@ -3,6 +3,7 @@
 import devping.nnplanner.domain.auth.dto.request.AuthSignRequestDTO;
 import devping.nnplanner.domain.auth.dto.request.EmailCodeRequestDTO;
 import devping.nnplanner.domain.auth.dto.request.EmailRequestDTO;
+import devping.nnplanner.domain.auth.dto.response.AuthResponseDTO;
 import devping.nnplanner.domain.auth.dto.response.AuthTokenResponseDTO;
 import devping.nnplanner.domain.auth.service.AuthService;
 import devping.nnplanner.domain.auth.service.EmailService;
@@ -20,6 +21,7 @@
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RequestHeader;
 import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;
 
 @RequestMapping("/api/auths")
@@ -80,4 +82,18 @@ public ResponseEntity<ApiResponse<Void>> logout(
 
         return GlobalResponse.OK("유저 로그아웃 성공", null);
     }
+
+    @PostMapping("/oauth2/google")
+    public ResponseEntity<ApiResponse<String>> loginUrlGoogle() {
+        return GlobalResponse.OK("구글 로그인 url 리턴 성공", authService.loginUrlGoogle());
+    }
+
+    @GetMapping("/oauth2/google")
+    public ResponseEntity<ApiResponse<AuthResponseDTO>> loginGoogle(
+        @RequestParam(value = "code") String authCode) {
+
+        AuthResponseDTO authResponseDTO = authService.loginGoogle(authCode);
+
+        return GlobalResponse.OK("구글 로그인 성공", authResponseDTO);
+    }
 }

src/main/java/devping/nnplanner/domain/auth/dto/request/AuthLoginRequestDTO.java

@@ -1,16 +1,18 @@
 package devping.nnplanner.domain.auth.dto.request;
 
-import jakarta.validation.constraints.Email;
 import jakarta.validation.constraints.NotBlank;
+import jakarta.validation.constraints.Pattern;
 import jakarta.validation.constraints.Size;
 import lombok.Getter;
 
 @Getter
 public class AuthLoginRequestDTO {
 
     @Size(max = 50)
-    @Email
     @NotBlank
+    @Pattern(
+        regexp = "^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
+        message = "유효하지 않은 이메일 형식입니다.")
     private String email;
 
     @NotBlank

src/main/java/devping/nnplanner/domain/auth/dto/request/AuthSignRequestDTO.java

@@ -1,6 +1,5 @@
 package devping.nnplanner.domain.auth.dto.request;
 
-import jakarta.validation.constraints.Email;
 import jakarta.validation.constraints.NotBlank;
 import jakarta.validation.constraints.Pattern;
 import jakarta.validation.constraints.Size;
@@ -15,7 +14,9 @@ public class AuthSignRequestDTO {
 
     @NotBlank
     @Size(max = 50)
-    @Email
+    @Pattern(
+        regexp = "^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\\.[a-zA-Z]{2,}$",
+        message = "유효하지 않은 이메일 형식입니다.")
     private String email;
 
     @NotBlank

src/main/java/devping/nnplanner/domain/auth/dto/request/GoogleInfoResponseDTO.java

@@ -0,0 +1,27 @@
+package devping.nnplanner.domain.auth.dto.request;
+
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@NoArgsConstructor
+public class GoogleInfoResponseDTO {
+
+    private String iss;
+    private String azp;
+    private String aud;
+    private String sub;
+    private String email;
+    private String email_verified;
+    private String at_hash;
+    private String name;
+    private String picture;
+    private String given_name;
+    private String family_name;
+    private String locale;
+    private String iat;
+    private String exp;
+    private String alg;
+    private String kid;
+    private String typ;
+}

src/main/java/devping/nnplanner/domain/auth/dto/request/GoogleRequestDTO.java

@@ -0,0 +1,22 @@
+package devping.nnplanner.domain.auth.dto.request;
+
+import lombok.Builder;
+import lombok.Getter;
+
+@Getter
+@Builder
+public class GoogleRequestDTO {
+
+    private String clientId;    // 애플리케이션의 클라이언트 ID
+    private String redirectUri; // Google 로그인 후 redirect 위치
+    private String clientSecret;    // 클라이언트 보안 비밀
+    private String responseType;    // Google OAuth 2.0 엔드포인트가 인증 코드를 반환하는지 여부
+    private String scope;   // OAuth 동의범위
+    private String code;
+    private String accessType;  // 사용자가 브라우저에 없을 때 애플리케이션이 액세스 토큰을 새로 고칠 수 있는지 여부
+    private String grantType;
+    private String state;
+    private String includeGrantedScopes;    // 애플리케이션이 컨텍스트에서 추가 범위에 대한 액세스를 요청하기 위해 추가 권한 부여를 사용
+    private String loginHint;   // 애플리케이션이 인증하려는 사용자를 알고 있는 경우 이 매개변수를 사용하여 Google 인증 서버에 힌트를 제공
+    private String prompt;  // default: 처음으로 액세스를 요청할 때만 사용자에게 메시지가 표시
+}

src/main/java/devping/nnplanner/domain/auth/dto/request/GoogleResponseDTO.java

@@ -0,0 +1,16 @@
+package devping.nnplanner.domain.auth.dto.request;
+
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@NoArgsConstructor
+public class GoogleResponseDTO {
+
+    private String access_token; // 애플리케이션이 Google API 요청을 승인하기 위해 보내는 토큰
+    private String expires_in;   // Access Token의 남은 수명
+    private String refresh_token;    // 새 액세스 토큰을 얻는 데 사용할 수 있는 토큰
+    private String scope;
+    private String token_type;   // 반환된 토큰 유형(Bearer 고정)
+    private String id_token;
+}

src/main/java/devping/nnplanner/domain/auth/dto/response/AuthResponseDTO.java

@@ -1,6 +1,6 @@
 package devping.nnplanner.domain.auth.dto.response;
 
-import devping.nnplanner.domain.auth.entity.User;
+import devping.nnplanner.domain.user.entity.User;
 import lombok.Getter;
 
 @Getter

src/main/java/devping/nnplanner/domain/auth/repository/UserRepository.java

@@ -1,6 +1,6 @@
 package devping.nnplanner.domain.auth.repository;
 
-import devping.nnplanner.domain.auth.entity.User;
+import devping.nnplanner.domain.user.entity.User;
 import java.util.Optional;
 import org.springframework.data.jpa.repository.JpaRepository;
 

src/main/java/devping/nnplanner/domain/auth/service/AuthService.java

@@ -1,21 +1,30 @@
 package devping.nnplanner.domain.auth.service;
 
 import devping.nnplanner.domain.auth.dto.request.AuthSignRequestDTO;
+import devping.nnplanner.domain.auth.dto.request.GoogleInfoResponseDTO;
+import devping.nnplanner.domain.auth.dto.request.GoogleRequestDTO;
+import devping.nnplanner.domain.auth.dto.request.GoogleResponseDTO;
+import devping.nnplanner.domain.auth.dto.response.AuthResponseDTO;
 import devping.nnplanner.domain.auth.dto.response.AuthTokenResponseDTO;
-import devping.nnplanner.domain.auth.entity.User;
-import devping.nnplanner.domain.auth.entity.User.LoginType;
 import devping.nnplanner.domain.auth.repository.EmailRepository;
 import devping.nnplanner.domain.auth.repository.UserRepository;
+import devping.nnplanner.domain.user.entity.User;
+import devping.nnplanner.domain.user.entity.User.LoginType;
 import devping.nnplanner.global.exception.CustomException;
 import devping.nnplanner.global.exception.ErrorCode;
 import devping.nnplanner.global.jwt.token.JwtUtil;
 import devping.nnplanner.global.jwt.user.UserDetailsImpl;
 import jakarta.servlet.http.HttpServletRequest;
+import java.util.HashMap;
+import java.util.Map;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.http.ResponseEntity;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
+import org.springframework.web.client.RestTemplate;
 
 @Slf4j
 @Service
@@ -27,6 +36,13 @@ public class AuthService {
     private final EmailRepository emailRepository;
     private final JwtUtil jwtUtil;
 
+    @Value("${spring.security.oauth2.client.registration.google.client-id}")
+    private String googleClientId;
+    @Value("${spring.security.oauth2.client.registration.google.client-secret}")
+    private String googleClientPw;
+    @Value("${api.oauth.key}")
+    private String oauthUrl;
+
     @Transactional
     public void signUp(AuthSignRequestDTO authSignRequestDTO) {
 
@@ -77,4 +93,60 @@ public void logout(HttpServletRequest httpRequest, UserDetailsImpl userDetails)
         jwtUtil.deleteRefreshToken(userId, email);
         jwtUtil.logoutAccessToken(httpRequest);
     }
+
+    public String loginUrlGoogle() {
+        return "https://accounts.google.com/o/oauth2/v2/auth?client_id=" + googleClientId
+            + "&redirect_uri=" + oauthUrl + "/api/auths/oauth2/google"
+            + "&response_type=code&scope=email%20profile%20openid&access_type=offline";
+    }
+
+    public AuthResponseDTO loginGoogle(String authCode) {
+
+        RestTemplate restTemplate = new RestTemplate();
+
+        GoogleRequestDTO googleOAuthRequestParam = GoogleRequestDTO
+            .builder()
+            .clientId(googleClientId)
+            .clientSecret(googleClientPw)
+            .code(authCode)
+            .redirectUri(oauthUrl + "/api/auths/oauth2/google")
+            .grantType("authorization_code")
+            .build();
+
+        ResponseEntity<GoogleResponseDTO> resultEntity = restTemplate.postForEntity(
+            "https://oauth2.googleapis.com/token",
+            googleOAuthRequestParam, GoogleResponseDTO.class);
+
+        String jwtToken = resultEntity.getBody().getId_token();
+
+        Map<String, String> map = new HashMap<>();
+        map.put("id_token", jwtToken);
+
+        ResponseEntity<GoogleInfoResponseDTO> resultEntity2 = restTemplate.postForEntity(
+            "https://oauth2.googleapis.com/tokeninfo",
+            map, GoogleInfoResponseDTO.class);
+
+        String email = resultEntity2.getBody().getEmail();
+        String name = resultEntity2.getBody().getName();
+
+        if (!userRepository.existsByEmail(email)) {
+            User user = new User();
+            user.create(
+                name,
+                email,
+                null,
+                LoginType.GOOGLE);
+            userRepository.save(user);
+        }
+
+        User user = userRepository.findByEmail(email)
+                                  .orElseThrow(() -> new CustomException(ErrorCode.NOT_FOUND));
+
+        String accessToken = jwtUtil.createAccessToken(email);
+        String refreshToken = jwtUtil.createRefreshToken(user.getUserId(), email);
+
+        AuthResponseDTO authResponseDTO = new AuthResponseDTO(user, accessToken, refreshToken);
+
+        return authResponseDTO;
+    }
 }