feat/OPS-324 : state 정보를 저장하는 resolver 추가.

Author: Kimgooner

src/main/java/org/tuna/zoopzoop/backend/domain/auth/resolver/CustomOAuth2AuthorizationRequestResolver.java

@@ -0,0 +1,44 @@
+package org.tuna.zoopzoop.backend.domain.auth.resolver;
+
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
+import org.springframework.security.oauth2.client.web.DefaultOAuth2AuthorizationRequestResolver;
+import org.springframework.security.oauth2.client.web.OAuth2AuthorizationRequestResolver;
+import org.springframework.security.oauth2.core.endpoint.OAuth2AuthorizationRequest;
+
+public class CustomOAuth2AuthorizationRequestResolver implements OAuth2AuthorizationRequestResolver {
+
+    private final OAuth2AuthorizationRequestResolver defaultResolver;
+
+    public CustomOAuth2AuthorizationRequestResolver(ClientRegistrationRepository repo, String authorizationRequestBaseUri) {
+        this.defaultResolver = new DefaultOAuth2AuthorizationRequestResolver(repo, authorizationRequestBaseUri);
+    }
+
+    @Override
+    public OAuth2AuthorizationRequest resolve(HttpServletRequest request) {
+        return customize(defaultResolver.resolve(request), request);
+    }
+
+    @Override
+    public OAuth2AuthorizationRequest resolve(HttpServletRequest request, String clientRegistrationId) {
+        return customize(defaultResolver.resolve(request, clientRegistrationId), request);
+    }
+
+    private OAuth2AuthorizationRequest customize(OAuth2AuthorizationRequest req, HttpServletRequest request) {
+        if (req == null) return null;
+
+        String source = request.getParameter("source"); // 로그인 시작 시 전달된 source
+
+        OAuth2AuthorizationRequest.Builder builder = OAuth2AuthorizationRequest.from(req);
+
+        if ("extension".equals(source)) {
+            // state에 source 정보를 안전하게 포함
+            builder.state("source:extension;" + req.getState());
+
+            // 필요하다면 redirectUri도 동적으로 변경 가능
+            // builder.redirectUri("https://api.test.zoopzoop.kro.kr/login/oauth2/code/kakao");
+        }
+
+        return builder.build();
+    }
+}

src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java

@@ -4,9 +4,11 @@
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
 import org.tuna.zoopzoop.backend.domain.auth.handler.OAuth2SuccessHandler;
+import org.tuna.zoopzoop.backend.domain.auth.resolver.CustomOAuth2AuthorizationRequestResolver;
 import org.tuna.zoopzoop.backend.domain.auth.service.CustomOAuth2UserService;
 import org.tuna.zoopzoop.backend.global.security.jwt.CustomAuthenticationEntryPoint;
 import org.tuna.zoopzoop.backend.global.security.jwt.JwtAuthenticationFilter;
@@ -18,6 +20,7 @@ public class SecurityConfig {
     private final JwtAuthenticationFilter jwtAuthenticationFilter;
     private final CustomOAuth2UserService customOAuth2UserService;
     private final OAuth2SuccessHandler oAuth2SuccessHandler;
+    private final ClientRegistrationRepository clientRegistrationRepository;
 
     @Bean
     public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
@@ -44,6 +47,13 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                         .anyRequest().authenticated()
                 )
                 .oauth2Login(oauth2 -> oauth2
+                        .authorizationEndpoint(authorization -> authorization
+                                .authorizationRequestResolver(
+                                        new CustomOAuth2AuthorizationRequestResolver(
+                                                clientRegistrationRepository,
+                                                "/oauth2/authorization"
+                                        )
+                                ))
                         .userInfoEndpoint(userInfo -> userInfo
                                 .userService(customOAuth2UserService)
                         )