depromeet · helenason · Feb 28, 2025 · Feb 25, 2025 · Feb 25, 2025 · Feb 25, 2025
@@ -0,0 +1,63 @@
+package com.evenly.took.feature.auth.api;
+
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import com.evenly.took.feature.auth.domain.OAuthType;
+import com.evenly.took.feature.auth.dto.request.RefreshTokenRequest;
+import com.evenly.took.feature.auth.dto.response.AuthResponse;
+import com.evenly.took.feature.auth.dto.response.OAuthUrlResponse;
+import com.evenly.took.feature.auth.dto.response.TokenResponse;
+import com.evenly.took.global.exception.dto.ErrorResponse;
+import com.evenly.took.global.response.SuccessResponse;
+
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.Parameter;
+import io.swagger.v3.oas.annotations.media.Content;
+import io.swagger.v3.oas.annotations.media.Schema;
+import io.swagger.v3.oas.annotations.parameters.RequestBody;
+import io.swagger.v3.oas.annotations.responses.ApiResponse;
+import io.swagger.v3.oas.annotations.responses.ApiResponses;
+import io.swagger.v3.oas.annotations.tags.Tag;
+
+@Tag(name = "[1. Auth]")
+public interface AuthApi {
+
+	@Operation(
+		summary = "소셜 로그인 인가 URL 리다이렉트",
+		description = "지정된 OAuthType에 따른 소셜 로그인 인가 코드 요청 URL로 클라이언트를 리다이렉트합니다.")
+	@ApiResponses({
+		@ApiResponse(responseCode = "302", description = "리다이렉트 성공")
+	})
+	@GetMapping("/api/auth/{oauthType}")
+	SuccessResponse<OAuthUrlResponse> redirectAuthRequestUrl(
+		@Parameter(description = "소셜 공급자 타입 (예: GOOGLE, KAKAO, APPLE)", required = true, example = "GOOGLE")
+		@PathVariable OAuthType oauthType);
+
+	@Operation(
+		summary = "소셜 로그인 및 토큰 발급",
+		description = "소셜 로그인 인가 코드를 통해 토큰(Access Token & Refresh Token)을 발급받습니다.")
+	@ApiResponses({
+		@ApiResponse(responseCode = "200", description = "로그인 성공")
+	})
+	@PostMapping("/api/auth/login/{oauthType}")
+	SuccessResponse<AuthResponse> login( // TODO 에러 응답 추가
+		@Parameter(description = "소셜 공급자 타입 (예: GOOGLE, KAKAO, APPLE)", required = true, example = "GOOGLE")
+		@PathVariable OAuthType oauthType,
+		@Parameter(description = "소셜 서버로부터 전달받은 인가 코드", required = true)
+		@RequestParam String code);
+
+	@Operation(
+		summary = "토큰 재발급",
+		description = "토큰(Access Token)을 재발급받습니다.")
+	@ApiResponses({
+		@ApiResponse(responseCode = "200", description = "토큰 재발급 성공"),
+		@ApiResponse(responseCode = "401", description = "Refresh Token 만료", content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
+	})
+	@PostMapping("/api/auth/refresh")
+	SuccessResponse<TokenResponse> refreshToken(
+		@RequestBody(description = "Access Token을 재발급 받기 위한 Refresh Token", required = true)
+		@org.springframework.web.bind.annotation.RequestBody RefreshTokenRequest request);
+}
@@ -0,0 +1,44 @@
+package com.evenly.took.feature.auth.api;
+
+import org.springframework.http.HttpStatus;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;
+
+import com.evenly.took.feature.auth.application.AuthService;
+import com.evenly.took.feature.auth.domain.OAuthType;
+import com.evenly.took.feature.auth.dto.request.RefreshTokenRequest;
+import com.evenly.took.feature.auth.dto.response.AuthResponse;
+import com.evenly.took.feature.auth.dto.response.OAuthUrlResponse;
+import com.evenly.took.feature.auth.dto.response.TokenResponse;
+import com.evenly.took.global.response.SuccessResponse;
+
+import lombok.RequiredArgsConstructor;
+
+@RestController
+@RequiredArgsConstructor
+public class AuthController implements AuthApi {
+
+	private final AuthService authService;
+
+	@GetMapping("/api/auth/{oauthType}")
+	public SuccessResponse<OAuthUrlResponse> redirectAuthRequestUrl(@PathVariable OAuthType oauthType) {
+		OAuthUrlResponse response = authService.getAuthCodeRequestUrl(oauthType);
+		return SuccessResponse.of(HttpStatus.FOUND, response);
+	}
+
+	@PostMapping("/api/auth/login/{oauthType}")
+	public SuccessResponse<AuthResponse> login(@PathVariable OAuthType oauthType, @RequestParam String code) {
+		AuthResponse response = authService.loginAndGenerateToken(oauthType, code);
+		return SuccessResponse.of(response);
+	}
+
+	@PostMapping("/api/auth/refresh")
+	public SuccessResponse<TokenResponse> refreshToken(@RequestBody RefreshTokenRequest request) {
+		TokenResponse response = authService.refreshToken(request);
+		return SuccessResponse.of(response);
+	}
+}
@@ -0,0 +1,27 @@
+package com.evenly.took.feature.auth.api;
+
+import org.springframework.stereotype.Component;
+
+import com.evenly.took.feature.auth.exception.AuthErrorCode;
+import com.evenly.took.feature.common.exception.TookException;
+
+import jakarta.servlet.http.HttpServletRequest;
+
+@Component
+public class HeaderHandler {
+
+	private static final String HEADER_KEY_OF_AUTH = "Authorization";
+	private static final String HEADER_VALUE_PREFIX_OF_AUTH = "Bearer ";
+
+	public String resolveAccessToken(HttpServletRequest request) {
+		String bearerToken = request.getHeader(HEADER_KEY_OF_AUTH);
+		validateAuthHeader(bearerToken);
+		return bearerToken.substring(HEADER_VALUE_PREFIX_OF_AUTH.length());
+	}
+
+	private void validateAuthHeader(String bearerToken) {
+		if (bearerToken == null || !bearerToken.startsWith(HEADER_VALUE_PREFIX_OF_AUTH)) {
+			throw new TookException(AuthErrorCode.JWT_UNAUTHORIZED);
+		}
+	}
+}
@@ -0,0 +1,45 @@
+package com.evenly.took.feature.auth.application;
+
+import org.springframework.stereotype.Service;
+
+import com.evenly.took.feature.auth.client.AuthCodeRequestUrlProviderComposite;
+import com.evenly.took.feature.auth.client.UserClientComposite;
+import com.evenly.took.feature.auth.domain.OAuthType;
+import com.evenly.took.feature.auth.dto.TokenDto;
+import com.evenly.took.feature.auth.dto.request.RefreshTokenRequest;
+import com.evenly.took.feature.auth.dto.response.AuthResponse;
+import com.evenly.took.feature.auth.dto.response.OAuthUrlResponse;
+import com.evenly.took.feature.auth.dto.response.TokenResponse;
+import com.evenly.took.feature.user.dao.UserRepository;
+import com.evenly.took.feature.user.domain.User;
+
+import lombok.RequiredArgsConstructor;
+
+@Service
+@RequiredArgsConstructor
+public class AuthService {
+
+	private final AuthCodeRequestUrlProviderComposite authCodeComposite;
+	private final UserClientComposite userClientComposite;
+	private final UserRepository userRepository;
+	private final TokenProvider tokenProvider;
+
+	public OAuthUrlResponse getAuthCodeRequestUrl(OAuthType oauthType) {
+		String url = authCodeComposite.provide(oauthType);
+		return new OAuthUrlResponse(url);
+	}
+
+	public AuthResponse loginAndGenerateToken(OAuthType oauthType, String authCode) {
+		User user = userClientComposite.fetch(oauthType, authCode);
+		User savedUser = userRepository.findByOauthIdentifier(user.getOauthIdentifier())
+			.orElseGet(() -> userRepository.save(user));
+		TokenDto tokens = tokenProvider.provideTokens(savedUser);
+		return new AuthResponse(tokens, user);
+	}
+
+	public TokenResponse refreshToken(RefreshTokenRequest request) {
+		String refreshToken = request.refreshToken();
+		String accessToken = tokenProvider.provideAccessTokenByRefreshToken(refreshToken);
+		return new TokenResponse(accessToken, refreshToken);
+	}
+}
@@ -1,16 +1,14 @@
-package com.evenly.took.global.security.jwt;
-
-import static com.evenly.took.global.exception.auth.jwt.JwtErrorCode.*;
+package com.evenly.took.feature.auth.application;
 
 import java.nio.charset.StandardCharsets;
 import java.security.Key;
 import java.util.Date;
 
 import org.springframework.stereotype.Component;
 
-import com.evenly.took.feature.user.domain.User;
-import com.evenly.took.global.config.properties.jwt.JwtProperties;
-import com.evenly.took.global.exception.auth.oauth.InvalidJwtTokenException;
+import com.evenly.took.feature.auth.exception.AuthErrorCode;
+import com.evenly.took.feature.common.exception.TookException;
+import com.evenly.took.global.config.properties.jwt.AuthProperties;
 
 import io.jsonwebtoken.Claims;
 import io.jsonwebtoken.Jws;
@@ -26,19 +24,18 @@
 @RequiredArgsConstructor
 public class JwtTokenProvider {
 
-	private final JwtProperties jwtProperties;
+	private final AuthProperties authProperties;
 
-	public String generateAccessToken(User user) {
-		Claims claims = generateClaims(user);
+	public String generateAccessToken(String userId) {
+		Claims claims = generateClaims(userId);
 		Date now = new Date();
-		Date expiredAt = new Date(now.getTime() + jwtProperties.accessTokenExpirationMilliTime());
+		Date expiredAt = new Date(now.getTime() + authProperties.accessTokenExpirationMilliTime());
 		return buildAccessToken(claims, now, expiredAt);
 	}
 
-	private Claims generateClaims(final User user) {
-		Claims claims = Jwts.claims().setSubject(user.getId().toString());
-		claims.put("name", user.getName());
-		return claims;
+	private Claims generateClaims(String userId) {
+		return Jwts.claims()
+			.setSubject(userId);
 	}
 
 	private String buildAccessToken(Claims claims, Date now, Date expiredAt) {
@@ -55,15 +52,19 @@ public void validateToken(String token) {
 		try {
 			parseClaims(token);
 		} catch (JwtException | IllegalArgumentException e) {
-			log.error(JWT_UNAUTHORIZED.getMessage(), e);
-			throw new InvalidJwtTokenException(JWT_UNAUTHORIZED);
+			log.error(AuthErrorCode.INVALID_ACCESS_TOKEN.getMessage(), e);
+			throw new TookException(AuthErrorCode.INVALID_ACCESS_TOKEN);
 		}
 	}
 
 	public String getUserId(String token) {
-		return parseClaims(token)
-			.getBody()
-			.getSubject();
+		try {
+			return parseClaims(token)
+				.getBody()
+				.getSubject();
+		} catch (JwtException ex) {
+			throw new TookException(AuthErrorCode.INVALID_ACCESS_TOKEN);
+		}
 	}
 
 	private Jws<Claims> parseClaims(String token) {
@@ -75,7 +76,7 @@ private Jws<Claims> parseClaims(String token) {
 	}
 
 	private Key getSigningKey() {
-		String secret = jwtProperties.accessTokenSecret();
+		String secret = authProperties.accessTokenSecret();
 		return Keys.hmacShaKeyFor(secret.getBytes(StandardCharsets.UTF_8));
 	}
 }