saitamau-maximum · sor4chi · Nov 15, 2023 · Oct 31, 2023 · Oct 31, 2023 · Nov 4, 2023
diff --git a/.env.example b/.env.example
@@ -2,3 +2,9 @@ MYSQL_ROOT_PASSWORD="test-root-pass"
 MYSQL_DATABASE="test-db"
 MYSQL_USER="test-taro"
 MYSQL_PASSWORD="test-pass"
+
+GITHUB_CLIENT_ID=""
+GITHUB_CLIENT_SECRET=""
+GITHUB_REDIRECT_URI="http://localhost/api/auth/callback"
+
+JWT_SECRET="test-jwt-secret"
diff --git a/docker-compose.prod.yml b/docker-compose.prod.yml
@@ -47,6 +47,9 @@ services:
       - MYSQL_DATABASE=${MYSQL_DATABASE}
       - MYSQL_USER=${MYSQL_USER}
       - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+      - GITHUB_CLIENT_ID=${GITHUB_CLIENT_ID}
+      - GITHUB_CLIENT_SECRET=${GITHUB_CLIENT_SECRET}
+      - JWT_SECRET=${JWT_SECRET}
     volumes:
       - ./server/public:/app/public
     depends_on:

diff --git a/docker-compose.yml b/docker-compose.yml
@@ -46,11 +46,16 @@ services:
       target: dev
     volumes:
       - ./server:/app
+    ports:
+      - 8000:8000
     environment:
       - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}
       - MYSQL_DATABASE=${MYSQL_DATABASE}
       - MYSQL_USER=${MYSQL_USER}
       - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+      - GITHUB_CLIENT_ID=${GITHUB_CLIENT_ID}
+      - GITHUB_CLIENT_SECRET=${GITHUB_CLIENT_SECRET}
+      - JWT_SECRET=${JWT_SECRET}
     depends_on:
       database:
         condition: service_healthy

diff --git a/etc/nginx/dev/conf.d/meline.conf b/etc/nginx/dev/conf.d/meline.conf
@@ -2,14 +2,6 @@ server {
     listen 80;
     server_name localhost;
 
-    location / {
-        proxy_pass http://client:3000;
-        proxy_http_version 1.1;
-        proxy_set_header Upgrade $http_upgrade;
-        proxy_set_header Connection "upgrade";
-        proxy_set_header Host $host;
-    }
-
     location /images {
         alias /var/www/public/images;
     }
@@ -21,4 +13,12 @@ server {
         proxy_set_header Connection "upgrade";
         proxy_set_header Host $host;
     }
+
+    location / {
+        proxy_pass http://client:3000;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection "upgrade";
+        proxy_set_header Host $host;
+    }
 }
diff --git a/server/Dockerfile b/server/Dockerfile
@@ -4,14 +4,13 @@ FROM golang:1.20-alpine AS builder
 WORKDIR /app
 COPY . .
 RUN go mod download
-RUN CGO_ENABLED=0 go build -o main .
+RUN CGO_ENABLED=0 go build -o main cmd/server/main.go
 
 
 FROM alpine AS prod
 RUN apk --no-cache add ca-certificates
 WORKDIR /app
 COPY --from=builder /app/main /app/main
-COPY --from=builder /app/sql /app/sql
 
 EXPOSE 8000
 ENTRYPOINT ["/app/main"]

diff --git a/server/cmd/seeder/seeds/user_seeder.go b/server/cmd/seeder/seeds/user_seeder.go
@@ -5,7 +5,7 @@ import (
 	"errors"
 
 	"github.com/uptrace/bun"
-	"github.com/saitamau-maximum/meline/usecase/model"
+	"github.com/saitamau-maximum/meline/models"
 )
 
 var (

diff --git a/server/cmd/server/main.go b/server/cmd/server/main.go
@@ -3,12 +3,16 @@ package main
 import (
 	"net/http"
 
+	_ "github.com/go-sql-driver/mysql"
 	"github.com/labstack/echo/v4"
 	"github.com/uptrace/bun"
 	"github.com/uptrace/bun/dialect/mysqldialect"
-	_ "github.com/go-sql-driver/mysql"
 
-	infra "github.com/saitamau-maximum/meline/infra/mysql"
+	"github.com/saitamau-maximum/meline/controller/handler"
+	"github.com/saitamau-maximum/meline/controller/gateway"
+	"github.com/saitamau-maximum/meline/infra/github"
+	"github.com/saitamau-maximum/meline/infra/mysql"
+	"github.com/saitamau-maximum/meline/usecase"
 )
 
 const (
@@ -18,17 +22,28 @@ const (
 func main() {
 	e := echo.New()
 
-	db, err := infra.ConnectDB(HOST)
+	db, err := mysql.ConnectDB(HOST)
 	if err != nil {
 		e.Logger.Error(err)
 	}
 
 	bunDB := bun.NewDB(db, mysqldialect.New())
 	defer bunDB.Close()
 
-	e.GET("/", func(c echo.Context) error {
+	apiGroup := e.Group("/api")
+
+	oAuthConf := github.NewGithubOAuthConf()
+	authRepository := github.NewAuthRepository(oAuthConf)
+	userRepository := mysql.NewUserRepository(bunDB)
+	authInteractor := usecase.NewAuthInteractor(authRepository)
+	userInteractor := usecase.NewUserInteractor(userRepository)
+	authGateway := gateway.NewAuthGateway(userInteractor)
+
+	handler.NewAuthHandler(apiGroup, authInteractor, userInteractor)
+
+	apiGroup.GET("/", authGateway.Auth(func (c echo.Context) error {
 		return c.String(http.StatusOK, "Hello, World!")
-	})
+	}))
 
 	e.Start(":8000")
 }

diff --git a/server/controller/gateway/auth_gateway.go b/server/controller/gateway/auth_gateway.go
@@ -0,0 +1,72 @@
+package gateway
+
+import (
+	"fmt"
+	"net/http"
+	"os"
+	"time"
+
+	jwt "github.com/dgrijalva/jwt-go"
+	"github.com/labstack/echo/v4"
+	"github.com/saitamau-maximum/meline/usecase"
+)
+
+type AuthGateway struct {
+	userInteractor usecase.IUserInteractor
+}
+
+func NewAuthGateway(userInteractor usecase.IUserInteractor) *AuthGateway {
+	return &AuthGateway{
+		userInteractor: userInteractor,
+	}
+}
+
+func (h *AuthGateway) Auth(next echo.HandlerFunc) echo.HandlerFunc {
+	return func(c echo.Context) error {
+		ctx := c.Request().Context()
+
+		// Get Access Token
+		cookie, err := c.Cookie("access_token")
+		if err != nil {
+			return c.JSON(http.StatusUnauthorized, err)
+		}
+
+		token, err := jwt.Parse(cookie.Value, func(token *jwt.Token) (interface{}, error) {
+			if token.Method.Alg() != "HS256" {
+				return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])
+			}
+
+			jwtSecret := os.Getenv("JWT_SECRET")
+			if jwtSecret == "" {
+				return nil, fmt.Errorf("JWT_SECRET is not set")
+			}
+
+			return []byte(jwtSecret), nil
+		})
+		if err != nil {
+			return c.JSON(http.StatusUnauthorized, err)
+		}
+
+		claims, ok := token.Claims.(jwt.MapClaims)
+		if !ok || !token.Valid {
+			return c.JSON(http.StatusUnauthorized, err)
+		}
+
+		// Get User
+		userId := claims["user_id"].(float64)
+
+		user, err := h.userInteractor.GetUserByID(ctx, uint64(userId))
+		if err != nil {
+			return c.JSON(http.StatusUnauthorized, err)
+		}
+
+		c.Set("user", user)
+
+		exp := claims["exp"].(float64)
+		if int64(exp) < time.Now().Unix() {
+			return c.JSON(http.StatusForbidden, err)
+		}
+
+		return next(c)
+	}
+}
diff --git a/server/controller/handler/auth_handler.go b/server/controller/handler/auth_handler.go
@@ -0,0 +1,99 @@
+package handler
+
+import (
+	"context"
+	"database/sql"
+	"log"
+	"net/http"
+	"time"
+
+	"github.com/labstack/echo/v4"
+	"github.com/saitamau-maximum/meline/usecase"
+)
+
+const (
+	b = 32
+)
+
+type AuthHandler struct {
+	authInteractor usecase.IAuthInteractor
+	userInteractor usecase.IUserInteractor
+}
+
+func NewAuthHandler(apiGroup *echo.Group, authInteractor usecase.IAuthInteractor, userInteractor usecase.IUserInteractor) {
+	authHandler := &AuthHandler{
+		authInteractor: authInteractor,
+		userInteractor: userInteractor,
+	}
+
+	authGroup := apiGroup.Group("/auth")
+	authGroup.GET("/login", authHandler.Login)
+	authGroup.GET("/callback", authHandler.CallBack)
+}
+
+func (h *AuthHandler) Login(c echo.Context) error {
+	ctx := c.Request().Context()
+
+	// Get Github OAuth URL
+	state := h.authInteractor.GenerateState(b)
+	url := h.authInteractor.GetGithubOAuthURL(ctx, state)
+
+	return c.Redirect(http.StatusMovedPermanently, url)
+}
+
+func (h *AuthHandler) CallBack(c echo.Context) error {
+	ctx := context.Background()
+
+	code := c.QueryParam("code")
+	gitToken, err := h.authInteractor.GetGithubOAuthToken(ctx, code)
+	if err != nil {
+		log.Default().Println(err)
+		return c.JSON(http.StatusUnauthorized, err)
+	}
+
+	res, err := h.authInteractor.GetGithubUser(ctx, gitToken)
+	if err != nil {
+		log.Default().Println(err)
+		return c.JSON(http.StatusUnauthorized, err)
+	}
+
+	// Get User
+	githubId := res["login"].(string)
+	githubName := res["name"].(string)
+
+	user, err := h.userInteractor.GetUserByGithubID(ctx, githubId)
+	if err != nil {
+		if (err == sql.ErrNoRows) {
+			githubImageURL := res["avatar_url"].(string)
+
+			user, err = h.userInteractor.CreateUserAndGetByGithubID(ctx, githubId, githubName, githubImageURL)
+			if err != nil {
+				log.Default().Println(err)
+				return c.JSON(http.StatusInternalServerError, err)
+			}
+		} else {
+			log.Default().Println(err)
+			return c.JSON(http.StatusInternalServerError, err)
+		}
+	}
+
+	// Set Access Token
+	token, err := h.authInteractor.CreateAccessToken(ctx, user)
+	if err != nil {
+		log.Default().Println(err)
+		return c.JSON(http.StatusInternalServerError, err)
+	}
+
+	cookie := new(http.Cookie)
+	cookie.Name = "access_token"
+	cookie.Value = token
+	cookie.Path = "/"
+	cookie.HttpOnly = true
+	cookie.Secure = true
+	cookie.SameSite = http.SameSiteLaxMode
+	cookie.Expires = time.Now().Add(24 * time.Hour)
+
+	c.SetCookie(cookie)
+
+	return c.JSON(http.StatusOK, "success")
+}
diff --git a/server/domain/entity/user.go b/server/domain/entity/user.go
@@ -5,12 +5,13 @@ import (
 )
 
 type User struct {
-	ID uint64 
-	GithubID string 
-	Name string 
-	CreatedAt time.Time
-	UpdatedAt time.Time
-	DeletedAt time.Time
+	ID uint64 `json:"id"`
+	GithubID string `json:"github_id"`
+	Name string `json:"name"`
+	ImageURL string `json:"image_url"`
+	CreatedAt time.Time `json:"created_at"`
+	UpdatedAt time.Time `json:"updated_at"`
+	DeletedAt time.Time `json:"deleted_at"`
 }
 
 func NewUserEntity(id uint64, githubID, name string, createdAt, updatedAt, deletedAt time.Time) *User {
@@ -22,4 +23,4 @@ func NewUserEntity(id uint64, githubID, name string, createdAt, updatedAt, delet
 		UpdatedAt: updatedAt,
 		DeletedAt: deletedAt,
 	}
-}
+}
diff --git a/server/domain/repository/auth_repository.go b/server/domain/repository/auth_repository.go
@@ -0,0 +1,11 @@
+package repository
+
+import (
+	"context"
+)
+
+type IAuthRepository interface {
+	GetGithubOAuthURL(ctx context.Context, state string) string
+	GetGithubOAuthToken(ctx context.Context, code string) (string, error)
+	GetGithubUser(ctx context.Context, token string) (map[string]interface{}, error)
+}
diff --git a/server/domain/repository/user_repository.go b/server/domain/repository/user_repository.go
@@ -0,0 +1,13 @@
+package repository
+
+import (
+	"context"
+
+	"github.com/saitamau-maximum/meline/models"
+)
+
+type IUserRepository interface {
+	FindByID(ctx context.Context, id uint64) (*model.User, error)
+	FindByGithubID(ctx context.Context, githubID string) (*model.User, error)
+	Create(ctx context.Context, user *model.User) error
+}
diff --git a/server/go.mod b/server/go.mod
@@ -3,17 +3,20 @@ module github.com/saitamau-maximum/meline
 go 1.20
 
 require (
+	github.com/dgrijalva/jwt-go v3.2.0+incompatible
 	github.com/go-sql-driver/mysql v1.7.1
 	github.com/labstack/echo/v4 v4.11.2
 	github.com/uptrace/bun v1.1.16
 	github.com/uptrace/bun/dialect/mysqldialect v1.1.16
 	github.com/uptrace/bun/extra/bundebug v1.1.16
 	github.com/urfave/cli/v2 v2.25.7
+	golang.org/x/oauth2 v0.13.0
 )
 
 require (
 	github.com/cpuguy83/go-md2man/v2 v2.0.2 // indirect
 	github.com/fatih/color v1.15.0 // indirect
+	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/jinzhu/inflection v1.0.0 // indirect
 	github.com/labstack/gommon v0.4.0 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
@@ -30,4 +33,6 @@ require (
 	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/sys v0.13.0 // indirect
 	golang.org/x/text v0.13.0 // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.31.0 // indirect
 )