Merge pull request #51 from prgrms-web-devcourse-final-project/feat/kakaoLogin/main

카카오 로그인 기능

Author: zizi0308

src/main/java/org/dfbf/soundlink/SoundLinkJavaApplication.java

@@ -1,10 +1,13 @@
 package org.dfbf.soundlink;
 
+import org.dfbf.soundlink.global.config.FeignConfig;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.boot.autoconfigure.security.servlet.SecurityAutoConfiguration;
 import org.springframework.cache.annotation.EnableCaching;
+import org.springframework.cloud.openfeign.EnableFeignClients;
 
+@EnableFeignClients(basePackages = "org.dfbf.soundlink.global.auth.client", defaultConfiguration = FeignConfig.class)
 @SpringBootApplication(exclude= SecurityAutoConfiguration.class)
 @EnableCaching
 public class SoundLinkJavaApplication {

src/main/java/org/dfbf/soundlink/domain/user/controller/AuthController.java

@@ -4,22 +4,21 @@
 import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
-import lombok.AllArgsConstructor;
+import lombok.RequiredArgsConstructor;
 import org.dfbf.soundlink.domain.user.dto.request.LoginReqDto;
+import org.dfbf.soundlink.domain.user.service.KakaoAuthService;
 import org.dfbf.soundlink.domain.user.service.UserService;
 import org.dfbf.soundlink.global.exception.ResponseResult;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestBody;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.bind.annotation.*;
 
 @RestController
-@AllArgsConstructor
+@RequiredArgsConstructor
 @Tag(name = "Auth API", description = "인증 관련 API")
 @RequestMapping("/api/auth")
 public class AuthController {
 
     private final UserService userService;
+    private final KakaoAuthService kakaoAuthService;
 
     @PostMapping("/login")
     @Operation(summary = "로그인", description = "로그인 API")
@@ -38,4 +37,11 @@ public ResponseResult logout(HttpServletResponse response, HttpServletRequest re
     public ResponseResult reissueToken(HttpServletRequest request, HttpServletResponse response){
         return userService.reissueToken(request, response);
     }
+
+    // 카카오 로그인 (인가 코드 받아서 회원가입 또는 로그인 진행)
+    @Operation(summary = "카카오 로그인", description = "카카오 로그인 후 JWT 발급")
+    @GetMapping("/login/kakao")
+    public ResponseResult kakaoCallback(@RequestParam String code, HttpServletResponse response) {
+        return kakaoAuthService.kakaoLogin(code, response);
+    }
 }

src/main/java/org/dfbf/soundlink/domain/user/dto/response/KakaoTokenResponseDTO.java

@@ -0,0 +1,11 @@
+package org.dfbf.soundlink.domain.user.dto.response;
+
+public record KakaoTokenResponseDTO(
+        String token_type,
+        String access_token,
+        String refresh_token,
+        int expires_in,
+        int refresh_token_expires_in,
+        String scope
+) {
+}

src/main/java/org/dfbf/soundlink/domain/user/dto/response/KakaoUserDTO.java

@@ -0,0 +1,12 @@
+package org.dfbf.soundlink.domain.user.dto.response;
+
+public record KakaoUserDTO(
+        String id,  // id는 Long 타입이지만, 안전성을 위해 String으로 처리
+        KakaoAccount kakao_account
+) {
+    public record KakaoAccount(
+            String email,
+            String nickname
+    ) {
+    }
+}

src/main/java/org/dfbf/soundlink/domain/user/repository/UserRepository.java

@@ -2,7 +2,6 @@
 
 import org.dfbf.soundlink.domain.user.entity.User;
 import org.dfbf.soundlink.domain.user.repository.dsl.UserRepositoryCustom;
-import org.springframework.cache.annotation.CachePut;
 import org.springframework.data.jpa.repository.JpaRepository;
 
 import java.util.Optional;
@@ -15,4 +14,6 @@ public interface UserRepository extends JpaRepository<User, Long>, UserRepositor
     boolean existsByLoginId(String loginId);
 
     Optional<User> findByLoginId(String loginId);
+
+    Optional<User> findBySocialId(Long socialId);
 }

src/main/java/org/dfbf/soundlink/domain/user/service/KakaoAuthService.java

@@ -0,0 +1,142 @@
+package org.dfbf.soundlink.domain.user.service;
+
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.dfbf.soundlink.domain.user.dto.response.KakaoTokenResponseDTO;
+import org.dfbf.soundlink.domain.user.dto.response.KakaoUserDTO;
+import org.dfbf.soundlink.domain.user.entity.User;
+import org.dfbf.soundlink.domain.user.repository.UserRepository;
+import org.dfbf.soundlink.global.auth.JwtProvider;
+import org.dfbf.soundlink.global.auth.client.KakaoAuthClient;
+import org.dfbf.soundlink.global.auth.client.KakaoUserClient;
+import org.dfbf.soundlink.global.comm.enums.SocialType;
+import org.dfbf.soundlink.global.exception.ResponseResult;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.http.ResponseCookie;
+import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
+import org.springframework.stereotype.Service;
+import org.springframework.util.LinkedMultiValueMap;
+import org.springframework.util.MultiValueMap;
+
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Optional;
+
+@Service
+@RequiredArgsConstructor
+public class KakaoAuthService {
+
+    private final KakaoAuthClient kakaoAuthClient;
+    private final KakaoUserClient kakaoUserClient;
+    private final UserRepository userRepository;
+    private final JwtProvider jwtProvider;
+    private final BCryptPasswordEncoder passwordEncoder;
+    private static final String domain = "";
+
+    @Value("${kakao.client-id}")
+    private String clientId;
+
+    @Value("${kakao.redirect-uri}")
+    private String redirectUri;
+
+    @Value("${REFRESH_TOKEN_EXPIRATION_TIME}")
+    private int REFRESH_TOKEN_EXPIRATION_TIME;
+
+    /**
+     *  카카오 로그인 및 JWT 발급
+     */
+    public ResponseResult kakaoLogin(String code, HttpServletResponse response) {
+        // 요청 파라미터 설정 (JSONObject 대신 하나의 Key와 하나 이상의 value로 이루어진 리스트를 쌍으로 받기 위해 LinkedMultiValueMap 사용)
+        MultiValueMap<String, String> params = new LinkedMultiValueMap<>();
+        params.add("grant_type", "authorization_code");
+        params.add("client_id", clientId);
+        params.add("redirect_uri", redirectUri);
+        params.add("code", code);
+
+        // 카카오 토큰 정보 요청
+        KakaoTokenResponseDTO tokenResponse = kakaoAuthClient.getAccessToken(params);
+        String accessToken = tokenResponse.access_token();
+
+        // 카카오 사용자 정보 요청
+        KakaoUserDTO kakaoUser = kakaoUserClient.getUserInfo("Bearer " + accessToken);
+        String kakaoNickname = kakaoUser.kakao_account().nickname();  // 닉네임
+
+        // DB에서 사용자 조회
+        Optional<User> existingUser = userRepository.findBySocialId(Long.valueOf(kakaoUser.id()));
+
+        if (existingUser.isPresent()) {
+            // 기존 사용자가 존재 시, 로그인 처리
+            return generateTokenResponse(existingUser.get(), response);
+        } else {
+            // 신규 가입은 닉네임 중복 확인 필요
+            if (userRepository.existsByNickname(kakaoNickname)) {
+                // 기존 닉네임이 중복 시, 새로운 임의의 닉네임 생성
+                kakaoNickname = generateUniqueNickname(kakaoNickname);
+            }
+            // 회원가입
+            User newUser = registerNewKakaoUser(kakaoUser, kakaoNickname);
+            return generateTokenResponse(newUser, response);
+        }
+    }
+
+    /**
+     *  JWT 토큰 생성
+     */
+    private ResponseResult generateTokenResponse(User user, HttpServletResponse response) {
+        String jwtAccessToken = jwtProvider.createAccessToken(user.getUserId());
+        String jwtRefreshToken = jwtProvider.createRefreshToken(user.getUserId());
+
+        //refreshToken - 쿠키
+        ResponseCookie refreshCookie = getRefreshToken(jwtRefreshToken);
+        response.setHeader("Set-Cookie", refreshCookie.toString());
+
+        //accessToken - 바디
+        Map<String, String> responseBody = new HashMap<>();
+        responseBody.put("accessToken", jwtAccessToken);
+
+        return new ResponseResult(responseBody);
+    }
+
+    /**
+     * 새로운 카카오 사용자 회원가입
+     */
+    private User registerNewKakaoUser(KakaoUserDTO kakaoUser, String nickname) {
+        User newUser = User.builder()
+                .nickName(nickname)
+                .socialId(Long.valueOf(kakaoUser.id()))
+                .socialType(SocialType.KAKAO)
+                .loginId("kakao_" + kakaoUser.id()) // 카카오 ID 기반 로그인 ID 생성
+                .password(passwordEncoder.encode(null))
+                .email(kakaoUser.kakao_account().email())
+                .build();
+        return userRepository.save(newUser);
+    }
+
+
+    /**
+     * 닉네임이 중복될 경우 새로운 닉네임 생성
+     */
+    private String generateUniqueNickname(String baseNickname) {
+        int suffix = 1;
+        String newNickname = baseNickname;
+
+        // 닉네임이 중복되지 않을 때까지 반복
+        while (userRepository.existsByNickname(newNickname)) {
+            newNickname = baseNickname + "_" + suffix;
+            suffix++;
+        }
+        return newNickname;
+    }
+
+    // RefreshToken을 쿠키로 설정
+    private ResponseCookie getRefreshToken(String refreshToken) {
+        return ResponseCookie
+                .from("REFRESHTOKEN", refreshToken)
+                .domain(domain)
+                .path("/")
+                .httpOnly(true)
+                .secure(false)
+                .maxAge(REFRESH_TOKEN_EXPIRATION_TIME/1000) // 만료시간 설정(밀리초 -> 초로 변경)
+                .build();
+    }
+}

src/main/java/org/dfbf/soundlink/domain/user/service/UserService.java

@@ -20,12 +20,9 @@
 import org.dfbf.soundlink.domain.user.repository.ProfileMusicRepository;
 import org.dfbf.soundlink.domain.user.repository.UserRepository;
 import org.dfbf.soundlink.global.auth.JwtProvider;
-import org.dfbf.soundlink.global.auth.TokenProperties;
 import org.dfbf.soundlink.global.exception.ErrorCode;
 import org.dfbf.soundlink.global.exception.ResponseResult;
 import org.springframework.beans.factory.annotation.Value;
-import org.springframework.cache.annotation.CachePut;
-import org.springframework.data.redis.core.RedisTemplate;
 import org.springframework.http.ResponseCookie;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.stereotype.Service;
@@ -235,7 +232,8 @@ public ResponseResult login(LoginReqDto loginReqDto, HttpServletResponse respons
                 return new ResponseResult(ErrorCode.FAIL_TO_FIND_USER, "계정을 찾을 수 없습니다.");
             }
             // 비밀번호 검증(암호화 된 비밀번호 비교)
-            if(!passwordEncoder.matches(loginReqDto.password(), userRepository.findPasswordByLoginId(loginReqDto.loginId()))){
+            if( loginReqDto.password() == null || loginReqDto.password().isEmpty() ||
+                    !passwordEncoder.matches(loginReqDto.password(), userRepository.findPasswordByLoginId(loginReqDto.loginId()))){
                 return new ResponseResult( ErrorCode.NOT_EQUALS_PASSWORD,"잘못된 비밀번호 입니다.");
             }
 

src/main/java/org/dfbf/soundlink/global/auth/client/KakaoAuthClient.java

@@ -0,0 +1,22 @@
+package org.dfbf.soundlink.global.auth.client;
+
+import org.dfbf.soundlink.domain.user.dto.response.KakaoTokenResponseDTO;
+import org.dfbf.soundlink.domain.user.dto.response.KakaoUserDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.util.MultiValueMap;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestHeader;
+
+@FeignClient(name = "kakaoAuthClient", url = "https://kauth.kakao.com")
+public interface KakaoAuthClient {
+
+    // 카카오 Access Token 요청
+    @PostMapping("/oauth/token")
+    KakaoTokenResponseDTO getAccessToken(@RequestBody MultiValueMap<String, String> params);
+
+    // 카카오 사용자 정보 요청
+    @GetMapping("/v2/user/me")
+    KakaoUserDTO getUserInfo(@RequestHeader("Authorization") String accessToken);
+}

src/main/java/org/dfbf/soundlink/global/auth/client/KakaoUserClient.java

@@ -0,0 +1,12 @@
+package org.dfbf.soundlink.global.auth.client;
+
+import org.dfbf.soundlink.domain.user.dto.response.KakaoUserDTO;
+import org.springframework.cloud.openfeign.FeignClient;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestHeader;
+
+@FeignClient(name = "kakaoUserClient", url = "https://kapi.kakao.com")
+public interface KakaoUserClient {
+    @GetMapping("/v2/user/me")
+    KakaoUserDTO getUserInfo(@RequestHeader("Authorization") String accessToken);
+}

src/main/java/org/dfbf/soundlink/global/config/CustomFeignErrorDecoder.java

@@ -0,0 +1,32 @@
+package org.dfbf.soundlink.global.config;
+
+import feign.Response;
+import feign.codec.ErrorDecoder;
+import org.dfbf.soundlink.global.exception.BusinessException;
+import org.dfbf.soundlink.global.exception.ErrorCode;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.http.HttpStatus;
+
+public class CustomFeignErrorDecoder implements ErrorDecoder {
+    private static final Logger log = LoggerFactory.getLogger(CustomFeignErrorDecoder.class);
+    private final ErrorDecoder defaultErrorDecoder = new Default();
+
+    @Override
+    public Exception decode(String methodKey, Response response) {
+        HttpStatus status = HttpStatus.valueOf(response.status());
+        log.error("Feign 요청 실패: methodKey={}, status={}", methodKey, status);
+
+        return switch (status) {
+            case UNAUTHORIZED ->  // 401
+                    new BusinessException(ErrorCode.KAKAO_API_UNAUTHORIZED);
+            case FORBIDDEN ->     // 403
+                    new BusinessException(ErrorCode.KAKAO_API_FORBIDDEN);
+            case BAD_REQUEST ->   // 400
+                    new BusinessException(ErrorCode.KAKAO_API_BAD_REQUEST);
+            case INTERNAL_SERVER_ERROR -> // 500
+                    new BusinessException(ErrorCode.KAKAO_API_SERVER_ERROR);
+            default -> defaultErrorDecoder.decode(methodKey, response);
+        };
+    }
+}