Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: OAuth2 로그인 구현 #5

Merged
merged 75 commits into from
Feb 10, 2024
Merged

feat: OAuth2 로그인 구현 #5

merged 75 commits into from
Feb 10, 2024

Conversation

eom-tae-in
Copy link
Owner

@eom-tae-in eom-tae-in commented Jan 23, 2024
edited
Loading

OAuth2 기반 설정 작업을 하였습니다.

📄 Summary

카카오 환경에서의 OAuth2 로그인 처리를 하였습니다.

🙋🏻 More

  • 기존 등록되어있던 signup 엔드포인트를 삭제하고, login만 남겨두었습니다. 이제 유저는 처음에 회원가입 되어있지 않았을 경우 생성, 기존에 있을 경우 해당 유저를 반환합니다.
  • login/{provider}로 POST 요청을 보내는데, provider는 kakao, naver 등의 OAuth2 회사 이름을 의미합니다.

close #4

eom-tae-in and others added 4 commits January 23, 2024 19:13
@eom-tae-in @devholic22
docs: 카카오 oauth2 로그인 설정(application.yml)
006a346 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: AuthController 리팩터링
67c7acc 
- 기존의 토큰 로그인 방식에서 OAuth 로그인으로 변경

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: AuthService 리팩터링
e1d6e38 
- 기존의 토큰 로그인 방식에서 OAuth 로그인으로 변경

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
feat: OAuth 기능 구현(kakao)
e4cd754 
- 기존의 토큰 로그인 방식에서 OAuth 로그인으로 변경

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
eom-tae-in and others added 11 commits January 25, 2024 10:10
@eom-tae-in @devholic22
refactor: 불필요한 로직 제거
214e041 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: SignupRequest를 LoginRequest로 리팩터링
744866c 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: 인증 서버 이름을 PathVariable로 받던 방식을 body로 받도록 리팩터링
9ee137d 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: AuthService에서 사용하지 않는 NicknameGenerator 필드 제거
cd698d3 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: 기본 생성자를 어노테이션으로 대체
49bcde8 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: OAuthAdapter 메서드의 역할 분리
296a8c9 
- OAuthProperties 내부 클래스 이름 변경 (Client -> User) (yml 설정 파일과 일치 시키기 위한 변경)

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: 클래스 이름 변경
6ce2ba3 
- InMemoryProviderRepository -> OAuthProviderRepository

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: OAuth 로그인에 필요한 통신 로직 추상화
c862414 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: 개행 추가 및 final 키워드 추가
236121a 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
remove: 불필요해진 클래스 제거
a95c3c7 
- OAuthTokenResponse

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: AuthService 리팩터링
31ac144 
- 불필요한 개행 삭제
- 메서드 분리

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
eom-tae-in and others added 2 commits January 25, 2024 12:20
@eom-tae-in @devholic22
refactor: 메서드 네이밍 변경
bab4056 
- getAccessToken -> getAccessTokenResponse

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: 메서드 네이밍 수정 및 Json타입을 객체 타입으로 파싱하기 위한 Response 재생성
66a278b 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
eom-tae-in and others added 7 commits January 26, 2024 14:28
@eom-tae-in @devholic22
move: OAuth 설정 파일 경로 변경
990f4a6 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: Member 로직과 Auth 로직을 분리
d8368e0 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
feat: 어노테이션으로 현재 OAuth 인증기관의 정보를 가져오는 기능 추가
75e5fbd 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: OAuthConfig 파일 수정
3b164b7 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
move: 파일 구조 변경
d1a5a07 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
refactor: OAuthProperties 리팩터링
24c299d 
- 기존의 불필요했던 구조를 최적화

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
remove: 불필요해진 클래스 제거
0b9011b 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
eom-tae-in and others added 2 commits February 2, 2024 19:27
@eom-tae-in @devholic22
test: 테스트를 쉽게 하기 위해 Fixture 클래스 추가
4747180 
- OAuthProviderFixture

Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
@eom-tae-in @devholic22
test: OAuthPropertiesTest 테스트 추가
5234baa 
Co-authored-by: devholic22 <hyunjoon.tech@gmail.com>
sosow0212
sosow0212 requested changes Feb 4, 2024
View reviewed changes
Copy link
Collaborator

@sosow0212 sosow0212 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

approve 하기 전에 몇 가지가 궁금해서 rc 누릅니다! 수고하셨습니다~

src/main/java/com/atwoz/global/config/CustomRequestWrapper.java Outdated
import java.nio.charset.Charset;
import java.nio.charset.StandardCharsets;

public class CustomRequestWrapper extends HttpServletRequestWrapper {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이건 뭘 하는 클래스인가요??

src/main/java/com/atwoz/member/application/auth/AuthService.java Outdated

@Transactional
public String signup(final SignupRequest request) {
validateExistedMember(request.email());
public String login(final LoginRequest request, final OAuthProvider provider) {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

참조 관계 끊고 아주 좋습니다 굿

src/main/java/com/atwoz/member/domain/auth/OAuthRequester.java Outdated
Comment on lines 12 to 14



Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

불필요한 공백 삭제해주세요

src/main/java/com/atwoz/member/infrastructure/auth/JackonJsonMapper.java
import org.springframework.stereotype.Component;

@Component
public class JackonJsonMapper implements JsonMapper {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이거 잭슨 말고 resttemplate에서 할 수 없을까요?

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

restTemplate로 통신을 담당하는 클래스를 만들었는데 그 안에 JSON을 매핑하는 라이브러리까지 존재하면 나중에 JSON을 변환해주는 라이브러리가 바뀔 경우 유지보수에 불편함이 있을 것 같아서 분리했습니다. 또한 JSON을 매핑하는 라이브러리를 다른 클래스에서도 사용하기 때문에 클래스를 따로 분리하여 관리하는 것이 이점이 더 있다고 생각했습니다:)

src/test/java/com/atwoz/member/application/member/MemberServiceTest.java Outdated
memberService.create(email, nickname);

// then
Member member = memberRepository.findByEmail(email).get();
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이렇게 테스트하기 보다는
softly로 생성이 됐는지 optinal.isPresent()로 먼저 검증하고 그다음 ast를 검증하는게 좋지 않을까요?

Copy link
Owner Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

그렇네요!
좋은 방법 공유해주셔서 감사합니다~

sosow0212
sosow0212 approved these changes Feb 9, 2024
View reviewed changes
Copy link
Collaborator

@sosow0212 sosow0212 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

계층 분리랑 다른 부분도 너무 잘해서 approve 하겠습니다!
리뷰 남긴 몇 부분만 수정하고 머지해주세요!

src/main/java/com/atwoz/member/infrastructure/auth/JwtTokenProvider.java Outdated
import lombok.Getter;
import lombok.NoArgsConstructor;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.stereotype.Component;

@Getter
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Getter는 필요없어 보입니다!

src/main/java/com/atwoz/member/ui/auth/support/auth/OAuthPlatform.java Outdated
return Arrays.stream(values())
.filter(platform -> name.equals(platform.name))
.findFirst()
.orElseThrow(IllegalArgumentException::new);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이거 정확히 어떤 오류인지 파악하기 위해서 CustomException으로 바꾸는 게 좋아보입니다

devholic22
devholic22 requested changes Feb 10, 2024
View reviewed changes
Copy link
Collaborator

@devholic22 devholic22 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

수고하셨습니다! 자잘한 몇 개만 수정해주시면 될 거 같습니다 :)

src/main/java/com/atwoz/member/ui/auth/support/auth/RequestProcessor.java Outdated
public interface RequestProcessor {

String readJsonFromBody(HttpServletRequest httpServletRequest) throws IOException;
}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

사용 위치가 0곳으로 나오는데 다른 곳에서 대신 처리하신 것 같습니다! 없애도 괜찮을까요?

src/main/java/com/atwoz/member/domain/auth/JsonMapper.java

MemberInfoResponse extractMemberInfoFrom(String memberInfoResponse,
MemberInfoKeyWordRequest memberInfoKeyWordRequest);
}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

final 속성 붙여주시면 좋을 것 같습니다!

src/main/java/com/atwoz/member/infrastructure/auth/JackonJsonMapper.java Outdated
private String getValue(final String keyWord, final JsonNode jsonNode) {

return Arrays.stream(keyWord.split(DELIMITER))
.reduce(jsonNode, JsonNode::get, (a, b) -> b)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

혹시 a, b 말고 다른 이름으로 바꿔주실 수 있을까요?

src/main/java/com/atwoz/member/infrastructure/auth/dto/OAuthProviderRequest.java
String tokenUri,
String userInfoUri,
MemberInfoKeyWordRequest memberInfoKeyWordRequest
) {
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

지금으로선 굳이 필요하지 않을 수도 있을 것 같긴 한데, 만약 OAuthProvider 회사들에서 제공하는 이름 형식이 달라지거나 위의 값이 없다면 (ex: clientSecret) 해당 OAuthProvider 방식은 지원이 안된다는 메시지를 전달해야 할 수도 있을 것 같습니다. 컨트롤러에 요청 시 넘어오는 정보인만큼 LoginRequest와 같이 @Valid 및 예외처리를 해 주면 어떨까요? (MemberInfoKeyWordRequest도 동일)

src/main/java/com/atwoz/member/infrastructure/auth/JwtTokenProvider.java
@@ -43,9 +42,9 @@ private void init() {
}

@Override
public String create(final Long id) {
public String create(final String email) {
Claims claims = Jwts.claims();
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

파라미터로 넘겨온 인자를 이용해 Claims를 만들고 그것을 이용해 토큰을 만든 뒤 반환하는 것인데, createTokenWith와 비슷하게 어떤 것을 이용해 토큰을 만든다는 느낌이 들게 메서드명을 정해주면 좋을 것 같습니다!

src/main/java/com/atwoz/member/infrastructure/auth/RestTemplateOAuthConnection.java
params.add("client_secret", oAuthProviderRequest.clientSecret());
params.add("redirect_uri", oAuthProviderRequest.redirectUri());
params.add("code", decode);

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

params.add에 쓰인 키 (grant_type, client_id 등)들을 상수처리하지 않은 이유가 있으실까요?
아니면 params에 여러 키를 저장하니, 메서드로 분리해주시면 좋을 것 같습니다.

src/main/java/com/atwoz/member/application/auth/OAuthRequester.java Outdated
}



Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

공백 지워주시면 좋을 것 같습니다 :)

@eom-tae-in eom-tae-in merged commit 8928b38 into develop Feb 10, 2024
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@devholic22 devholic22 devholic22 approved these changes

@sosow0212 sosow0212 sosow0212 approved these changes

Assignees

@devholic22 devholic22

@eom-tae-in eom-tae-in

Labels
기능 추가
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

로그인 OAuth 기능을 구현한다.
3 participants
@eom-tae-in @sosow0212 @devholic22