release: 개발 완료 코드 release 브랜치 병합 (#87)

* feat: workflow에 EC2 자동 배포 추가 (#78)

* feat: workflow에 EC2 자동 배포 추가

* chore: appleboy/ssh-action 최신버전으로 변경

* feat: 발표방 캐싱 및 인덱싱 적용 feat 새로운 기능 추가 (#80)

* docs: 발표방 생성 요청 dto 스웨거 수정
* feat: Room secretCode Unique 설정
* feat: Room 캐시 적용
* test: Room 캐시 테스트
* test: 비밀코드 중복 문제 해결
* fix: 로그인 500에러 수정
* fix: 로그인 500에러 수정

* feat: 카카오 로그인 API (#86)

* fix: cors disable 추가
* feat: 카카오 로그인 API
* feat: 시큐리티에 카카오 로그인 url 추가
* docs: swagger 수정
* test: test yml 수정

* refactor: Presigned URL 업로드용, 조회용 로직 분리  (#84)

* refactor: 기존 presigned-url 발급 로직을 업로드용, 조회용으로 분리

* docs: 발표자료  Swagger tag 추가

---------

Co-authored-by: 김건우 <[email protected]>
Co-authored-by: 김건우 <[email protected]>

Author: chw0912

.github/workflows/release-workflow.yml

@@ -5,7 +5,7 @@ on:
     branches:
       - release
   workflow_dispatch:
-  
+
 env:
   REGISTRY: ghcr.io
   IMAGE_NAME: ${{ github.repository }}

src/main/java/com/oronaminc/join/document/api/DocumentController.java

@@ -7,12 +7,14 @@
 import com.oronaminc.join.member.security.MemberDetails;
 import io.swagger.v3.oas.annotations.Operation;
 import io.swagger.v3.oas.annotations.responses.ApiResponse;
+import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.validation.Valid;
 import lombok.RequiredArgsConstructor;
 import org.springframework.http.HttpStatus;
 import org.springframework.security.core.annotation.AuthenticationPrincipal;
 import org.springframework.web.bind.annotation.*;
 
+@Tag(name = "발표자료")
 @RestController
 @RequiredArgsConstructor
 @RequestMapping("/api/documents")
@@ -37,6 +39,6 @@ public DocumentResponse generatePresignedUrl(
             @AuthenticationPrincipal MemberDetails memberDetails
     ) {
         String memberRole = memberDetails.getRole();
-        return documentService.generatePresignedUrl(documentRequest, memberRole);
+        return documentService.generateUploadPresignedUrl(documentRequest, memberRole);
     }
 }

src/main/java/com/oronaminc/join/document/service/DocumentService.java

@@ -37,7 +37,7 @@ public void deleteByRoomId(Long roomId) {
         documentRepository.deleteByRoomId(roomId);
     }
 
-    public DocumentResponse generatePresignedUrl(DocumentRequest request, String memberRole) {
+    public DocumentResponse generateUploadPresignedUrl(DocumentRequest request, String memberRole) {
         if (!memberRole.equals(MemberType.MEMBER.name())) {
             throw new ErrorException(ErrorCode.UNAUTHORIZED_MEMBER);
         }
@@ -52,7 +52,7 @@ public DocumentResponse generatePresignedUrl(DocumentRequest request, String mem
 
         String uuid = UUID.randomUUID().toString();
         String objectKey = "temp/" + uuid + extension;
-        String presignedUrl = s3Service.generatePresignedUrl(objectKey);
+        String presignedUrl = s3Service.generateUploadPresignedUrl(objectKey);
 
         return new DocumentResponse(presignedUrl, objectKey);
     }

src/main/java/com/oronaminc/join/infra/service/S3Service.java

@@ -11,6 +11,8 @@
 import software.amazon.awssdk.services.s3.presigner.S3Presigner;
 import software.amazon.awssdk.services.s3.presigner.model.GetObjectPresignRequest;
 import software.amazon.awssdk.services.s3.presigner.model.PresignedGetObjectRequest;
+import software.amazon.awssdk.services.s3.presigner.model.PresignedPutObjectRequest;
+import software.amazon.awssdk.services.s3.presigner.model.PutObjectPresignRequest;
 
 import java.time.Duration;
 
@@ -25,7 +27,8 @@ public class S3Service {
     @Value("${cloud.aws.s3.bucket}")
     private String bucket;
 
-    public String generatePresignedUrl(String key) {
+    // 조회용
+    public String generateGetPresignedUrl(String key) {
         GetObjectRequest getObjectRequest = GetObjectRequest.builder()
                 .bucket(bucket)
                 .key(key)
@@ -41,6 +44,24 @@ public String generatePresignedUrl(String key) {
         return presignedRequest.url().toString();
     }
 
+    // 업로드용
+    public String generateUploadPresignedUrl(String key) {
+        PutObjectRequest putObjectRequest = PutObjectRequest.builder()
+                .bucket(bucket)
+                .contentType("application/pdf")
+                .key(key)
+                .build();
+
+        PutObjectPresignRequest presignRequest = PutObjectPresignRequest.builder()
+                .signatureDuration(Duration.ofMinutes(3))
+                .putObjectRequest(putObjectRequest)
+                .build();
+
+        PresignedPutObjectRequest presignedRequest = s3Presigner.presignPutObject(presignRequest);
+
+        return presignedRequest.url().toString();
+    }
+
     public void deleteFile(String key) {
         try {
             if (isFileExist(key)) {

src/main/java/com/oronaminc/join/member/dto/KakaoLoginRequest.java

@@ -0,0 +1,7 @@
+package com.oronaminc.join.member.dto;
+
+public record KakaoLoginRequest(
+        String code,
+        String state
+) {
+}

src/main/java/com/oronaminc/join/member/dto/KakaoLoginResponse.java

@@ -0,0 +1,9 @@
+package com.oronaminc.join.member.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+
+public record KakaoLoginResponse(
+        @Schema(description = "회원 id", example = "1001")
+        Long id
+) {
+}

src/main/java/com/oronaminc/join/member/dto/KakaoUserResponse.java

@@ -0,0 +1,11 @@
+package com.oronaminc.join.member.dto;
+
+import lombok.Builder;
+
+@Builder
+public record KakaoUserResponse(
+        String email,
+        String nickname,
+        String profileImageUrl
+) {
+}

src/main/java/com/oronaminc/join/member/security/AuthController.java

@@ -1,10 +1,5 @@
 package com.oronaminc.join.member.security;
 
-import io.swagger.v3.oas.annotations.Operation;
-import io.swagger.v3.oas.annotations.responses.ApiResponse;
-import io.swagger.v3.oas.annotations.responses.ApiResponses;
-import io.swagger.v3.oas.annotations.tags.Tag;
-import io.swagger.v3.oas.annotations.tags.Tags;
 import java.util.List;
 
 import org.springframework.http.HttpStatus;
@@ -24,8 +19,13 @@
 
 import com.oronaminc.join.member.dto.GuestLoginRequest;
 import com.oronaminc.join.member.dto.GuestLoginResponse;
+import com.oronaminc.join.member.dto.KakaoLoginRequest;
+import com.oronaminc.join.member.dto.KakaoLoginResponse;
 import com.oronaminc.join.member.dto.SessionInfoResponse;
 
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.responses.ApiResponse;
+import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.servlet.http.Cookie;
 import jakarta.servlet.http.HttpServletRequest;
 import jakarta.servlet.http.HttpServletResponse;
@@ -40,6 +40,33 @@
 public class AuthController {
     private final AuthService authService;
 
+    @Operation(
+            summary = "카카오 로그인",
+            description = "redirect url 에 포함된 파라미터의 code와 state를 입력해주세요. 이후 모든 요청에 세션 인증이 적용됩니다."
+    )
+    @PostMapping("/kakao")
+    @ResponseStatus(HttpStatus.OK)
+    public KakaoLoginResponse kakaoLogin(
+            @RequestBody KakaoLoginRequest kakaoLoginRequest,
+            HttpServletRequest request
+    ) {
+        MemberDetails memberDetails = authService.kakaoLogin(kakaoLoginRequest.code());
+
+        UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(
+                memberDetails, null, List.of(new SimpleGrantedAuthority(memberDetails.getRole()))
+        );
+
+        SecurityContext context = SecurityContextHolder.createEmptyContext();
+        context.setAuthentication(authentication);
+        SecurityContextHolder.setContext(context);
+
+        SecurityContextHolder.getContext().setAuthentication(authentication);
+
+        request.getSession(true).setAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY, context);
+
+        return new KakaoLoginResponse(memberDetails.getId());
+    }
+
     @Operation(
         summary = "비회원 로그인",
         description = "닉네임을 입력하면 비회원 세션이 생성되고 인증이 설정됩니다. 이후 모든 요청에 세션 인증이 적용됩니다.",

src/main/java/com/oronaminc/join/member/security/AuthService.java

@@ -3,19 +3,26 @@
 import static com.oronaminc.join.member.util.MemberMapper.*;
 
 import java.util.Map;
-import java.util.Optional;
 
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.http.HttpEntity;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.HttpMethod;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
 import org.springframework.security.oauth2.client.userinfo.DefaultOAuth2UserService;
-import org.springframework.security.oauth2.client.userinfo.OAuth2UserRequest;
-import org.springframework.security.oauth2.core.OAuth2AuthenticationException;
-import org.springframework.security.oauth2.core.user.OAuth2User;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
+import org.springframework.util.LinkedMultiValueMap;
+import org.springframework.util.MultiValueMap;
+import org.springframework.web.client.RestTemplate;
 
 import com.oronaminc.join.member.dao.MemberRepository;
 import com.oronaminc.join.member.domain.Member;
 import com.oronaminc.join.member.dto.GuestLoginRequest;
+import com.oronaminc.join.member.dto.KakaoUserResponse;
 import com.oronaminc.join.member.service.MemberReader;
+import com.oronaminc.join.member.util.MemberMapper;
 
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
@@ -27,32 +34,91 @@ public class AuthService extends DefaultOAuth2UserService {
     private final MemberRepository memberRepository;
     private final MemberReader memberReader;
 
-    @Override
-    public OAuth2User loadUser(OAuth2UserRequest userRequest) throws OAuth2AuthenticationException {
-        OAuth2User oAuth2User = super.loadUser(userRequest);
-        Map<String, Object> attributes = oAuth2User.getAttributes();
+    private final RestTemplate restTemplate = new RestTemplate();
+
+    private static final String TOKEN_URI = "https://kauth.kakao.com/oauth/token";
+    private static final String USER_INFO_URI = "https://kapi.kakao.com/v2/user/me";
+
+    @Value("${spring.security.oauth2.client.registration.kakao.client-id}")
+    private String clientId;
+
+    @Value("${spring.security.oauth2.client.registration.kakao.redirect-uri}")
+    private String redirectUri;
+
+    @Value("${spring.security.oauth2.client.registration.kakao.client-secret}")
+    private String clientSecret;
+
+    // @Override
+    // public OAuth2User loadUser(OAuth2UserRequest userRequest) throws OAuth2AuthenticationException {
+    //     OAuth2User oAuth2User = super.loadUser(userRequest);
+    //     Map<String, Object> attributes = oAuth2User.getAttributes();
+    //
+    //     log.info("attributes :: " + attributes);
+    //
+    //     Map<String, Object> kakaoAccount = (Map<String, Object>) attributes.get("kakao_account");
+    //     Map<String, Object> profile = (Map<String, Object>) kakaoAccount.get("profile");
+    //
+    //
+    //     Optional<Member> optionalMember = memberReader.findByEmail(kakaoAccount.get("email").toString());
+    //
+    //     Member member = optionalMember.orElseGet(() -> memberRepository.save(toKakaoMember(kakaoAccount, profile)));
+    //
+    //     return toOAuth2MemberDetails(member);
+    // }
 
-        log.info("attributes :: " + attributes);
+    @Transactional
+    public MemberDetails loadGuest(GuestLoginRequest guestLoginRequest) {
+        Member guest = toGuestMember(guestLoginRequest);
 
-        Map<String, Object> kakaoAccount = (Map<String, Object>) attributes.get("kakao_account");
-        Map<String, Object> profile = (Map<String, Object>) kakaoAccount.get("profile");
+        memberRepository.save(guest);
+        guest.registerGuest();
 
+        return toGuestMemberDetails(guest);
+    }
 
-        Optional<Member> optionalMember = memberReader.findByEmail(kakaoAccount.get("email").toString());
+    @Transactional
+    public MemberDetails kakaoLogin(String code) {
+        String accessToken = getAccessToken(code);
+        KakaoUserResponse kakaoUser = getUserInfo(accessToken);
 
-        Member member = optionalMember.orElseGet(() -> memberRepository.save(toKakaoMember(kakaoAccount, profile)));
+        Member member = memberRepository.findByEmail(kakaoUser.email())
+                .orElseGet(() -> memberRepository.save(MemberMapper.toNewKakaoMember(kakaoUser)));
 
         return toOAuth2MemberDetails(member);
     }
 
-    @Transactional
-    public MemberDetails loadGuest(GuestLoginRequest guestLoginRequest) {
-        Member guest = toGuestMember(guestLoginRequest);
+    private String getAccessToken(String code) {
+        HttpHeaders headers = new HttpHeaders();
+        headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
 
-        memberRepository.save(guest);
-        guest.registerGuest();
+        MultiValueMap<String, String> params = new LinkedMultiValueMap<>();
+        params.add("grant_type", "authorization_code");
+        params.add("client_id", clientId);
+        params.add("redirect_uri", redirectUri);
+        params.add("code", code);
+        params.add("client_secret", clientSecret);
 
-        return toGuestMemberDetails(guest);
+        HttpEntity<MultiValueMap<String, String>> request = new HttpEntity<>(params, headers);
+
+        ResponseEntity<Map> response = restTemplate.postForEntity(TOKEN_URI, request, Map.class);
+
+        return (String) response.getBody().get("access_token");
     }
 
+    private KakaoUserResponse getUserInfo(String accessToken) {
+        HttpHeaders headers = new HttpHeaders();
+        headers.setBearerAuth(accessToken);
+        headers.setContentType(MediaType.APPLICATION_JSON);
+
+        HttpEntity<Void> entity = new HttpEntity<>(headers);
+
+        ResponseEntity<Map> response = restTemplate.exchange(USER_INFO_URI, HttpMethod.GET, entity, Map.class);
+
+        Map<String, Object> attributes = response.getBody();
+
+        Map<String, Object> kakaoAccount = (Map<String, Object>) attributes.get("kakao_account");
+        Map<String, Object> profile = (Map<String, Object>) kakaoAccount.get("profile");
+
+        return MemberMapper.toKakaoUserResponse(kakaoAccount, profile);
+    }
 }

src/main/java/com/oronaminc/join/member/security/SecurityConfig.java

@@ -2,19 +2,13 @@
 
 import static org.springframework.security.config.Customizer.*;
 
-import java.util.Arrays;
-import java.util.List;
-
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.context.annotation.Profile;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
 import org.springframework.security.web.SecurityFilterChain;
-import org.springframework.web.cors.CorsConfiguration;
-import org.springframework.web.cors.CorsConfigurationSource;
-import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
 
 import lombok.RequiredArgsConstructor;
 
@@ -29,10 +23,11 @@ public class SecurityConfig {
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         return http
                 .csrf(csrf -> csrf.disable())
-                .cors(withDefaults())
+                .cors(cors -> cors.disable())
                 .authorizeHttpRequests(auth -> auth
                         .requestMatchers(
                                 "/api/auth/guest",
+                                "/api/auth/kakao",
                                 "/login"
                         )
                         .anonymous()
@@ -56,22 +51,4 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 .logout(withDefaults())
                 .build();
     }
-
-    @Bean
-    public CorsConfigurationSource corsConfigurationSource() {
-        CorsConfiguration configuration = new CorsConfiguration();
-        configuration.setAllowedOrigins(
-                Arrays.asList(
-                        "http://localhost:8080",
-                        "http://localhost:3000"
-                )
-        );
-        configuration.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE", "PATCH", "OPTIONS"));
-        configuration.setAllowedHeaders(List.of("*"));
-        configuration.setAllowCredentials(true);
-
-        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
-        source.registerCorsConfiguration("/**", configuration);
-        return source;
-    }
 }