zeppesi
diff --git a/‎WAKe_server/middleware.py
Lines changed: 33 additions & 0 deletions b/‎WAKe_server/middleware.py
Lines changed: 33 additions & 0 deletions
diff --git a/‎WAKe_server/settings/base.py
Lines changed: 57 additions & 1 deletion b/‎WAKe_server/settings/base.py
Lines changed: 57 additions & 1 deletion
diff --git a/‎WAKe_server/settings/base_schema.py
Lines changed: 122 additions & 0 deletions b/‎WAKe_server/settings/base_schema.py
Lines changed: 122 additions & 0 deletions
diff --git a/‎WAKe_server/settings/dev.py
Lines changed: 8 additions & 1 deletion b/‎WAKe_server/settings/dev.py
Lines changed: 8 additions & 1 deletion
diff --git a/‎WAKe_server/settings/local.py
Lines changed: 38 additions & 1 deletion b/‎WAKe_server/settings/local.py
Lines changed: 38 additions & 1 deletion
diff --git a/‎WAKe_server/urls.py
Lines changed: 4 additions & 0 deletions b/‎WAKe_server/urls.py
Lines changed: 4 additions & 0 deletions
diff --git a/‎users/__init__.py renamed to ‎accounts/__init__.py b/‎users/__init__.py renamed to ‎accounts/__init__.py
diff --git a/‎accounts/admin.py
Lines changed: 61 additions & 0 deletions b/‎accounts/admin.py
Lines changed: 61 additions & 0 deletions
diff --git a/‎users/apps.py renamed to ‎accounts/apps.py
Lines changed: 2 additions & 2 deletions b/‎users/apps.py renamed to ‎accounts/apps.py
Lines changed: 2 additions & 2 deletions
@@ -0,0 +1,33 @@
+from django.core.handlers.wsgi import WSGIRequest
+from django.utils.deprecation import MiddlewareMixin
+from rest_framework.response import Response
+from rest_framework_simplejwt.tokens import SlidingToken
+
+
+class CustomAuthenticationMiddleware(MiddlewareMixin):
+
+    def set_jwt_cookie(self, request: WSGIRequest, response: Response):
+        if request.user.is_authenticated:
+            jwt = SlidingToken.for_user(request.user)
+            origin = request.headers.get('origin')
+            is_local = False if origin is None or 'localhost' not in origin else True
+            domain = None if is_local else '.zps.kr'
+            response.set_cookie(
+                'jwt',
+                str(jwt),
+                max_age=3600 * 24 * 3,
+                domain=domain,
+                secure=(not is_local),
+                httponly=True,
+                samesite=False,
+            )
+        elif request.COOKIES.get('jwt', None) is not None:
+            response.set_cookie(
+                'jwt', max_age=0, domain='.zps.kr', secure=True,
+                expires='Thu, 01 Jan 1970 00:00:00 GMT', samesite=False,
+            )
+
+        return response
+
+    def process_response(self, request, response):
+        return self.set_jwt_cookie(request, response)
@@ -9,6 +9,7 @@
 For the full list of settings and their values, see
 https://docs.djangoproject.com/en/5.0/ref/settings/
 """
+from datetime import timedelta
 from pathlib import Path
 
 # Build paths inside the project like this: BASE_DIR / 'subdir'.
@@ -33,16 +34,23 @@
     "django.contrib.messages",
     "django.contrib.staticfiles",
     "corsheaders",
+    "django.contrib.sites",
+    "allauth",
+    "allauth.account",
+    "allauth.socialaccount",
+    "allauth.socialaccount.providers.kakao",
 ]
 
 THIRD_PARTY_APPS = [
     "rest_framework",
+    "rest_framework_simplejwt",
+    "rest_framework_simplejwt.token_blacklist",
     "drf_yasg",
     "storages",
 ]
 
 PROJECT_APPS = [
-    "users",
+    "accounts",
     "records",
 ]
 
@@ -55,8 +63,10 @@
     "django.middleware.common.CommonMiddleware",
     "django.middleware.csrf.CsrfViewMiddleware",
     "django.contrib.auth.middleware.AuthenticationMiddleware",
+    "WAKe_server.middleware.CustomAuthenticationMiddleware",
     "django.contrib.messages.middleware.MessageMiddleware",
     "django.middleware.clickjacking.XFrameOptionsMiddleware",
+    "allauth.account.middleware.AccountMiddleware",
 ]
 
 TEMPLATES = [
@@ -115,3 +125,49 @@
 
 CORS_ALLOW_CREDENTIALS = True
 CORS_ORIGIN_ALLOW_ALL = True
+
+AUTHENTICATION_BACKENDS = [
+    'django.contrib.auth.backends.ModelBackend',
+
+    'allauth.account.auth_backends.AuthenticationBackend',
+]
+
+SITE_ID = 1
+
+SOCIALACCOUNT_LOGIN_ON_GET = True
+LOGIN_REDIRECT_URL = 'main'
+ACCOUNT_LOGOUT_REDIRECT_URL = 'index'
+ACCOUNT_LOGOUT_ON_GET = True
+
+AUTH_USER_MODEL = 'accounts.User'
+
+EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
+
+REST_USE_JWT = True
+
+ACCOUNT_USER_MODEL_USERNAME_FIELD = None
+ACCOUNT_EMAIL_REQUIRED = True
+ACCOUNT_UNIQUE_EMAIL = True
+ACCOUNT_USERNAME_REQUIRED = False
+ACCOUNT_AUTHENTICATION_METHOD = 'email'
+ACCOUNT_EMAIL_VERIFICATION = 'none'
+
+# jwt 토큰은 simplejwt의 JWTAuthentication으로 인증한다.
+REST_FRAMEWORK = {
+    'DEFAULT_AUTHENTICATION_CLASSES': (
+        'rest_framework_simplejwt.authentication.JWTAuthentication',
+    ),
+    'DEFAULT_PERMISSION_CLASSES': (
+        'rest_framework.permissions.AllowAny',  # 누구나 접근
+    ),
+}
+
+# 추가적인 JWT 설정
+SIMPLE_JWT = {
+    'SLIDING_TOKEN_LIFETIME': timedelta(days=28),
+    'SLIDING_TOKEN_REFRESH_LIFETIME': timedelta(days=28),
+    'SLIDING_TOKEN_REFRESH_EXP_CLAIM': 'refresh_exp',
+    'UPDATE_LAST_LOGIN': True,
+    'USER_ID_FIELD': 'email',
+    'AUTH_TOKEN_CLASSES': ('rest_framework_simplejwt.tokens.SlidingToken',)
+}
@@ -0,0 +1,122 @@
+from drf_spectacular.openapi import AutoSchema
+from drf_spectacular.plumbing import ResolvedComponent, build_media_type_object, modify_media_types_for_versioning
+from drf_spectacular.utils import OpenApiResponse
+
+from dtos import BaseDTO, ErrorStatus
+
+
+class DTOSchema(AutoSchema):
+    def _get_response_bodies(self, direction='response'):
+        response_serializers = self.get_response_serializers()
+
+        if hasattr(response_serializers, 'dto_name'):
+            response_serializers: BaseDTO
+            component = self.resolve_dto(response_serializers)
+            response = {200: {'content': {'application/json': {'schema': component.ref}}}}
+            return response
+        elif isinstance(response_serializers, dict):
+            responses = {}
+            for code, serializer in response_serializers.items():
+                if isinstance(code, tuple):
+                    code, media_types = str(code[0]), code[1:]
+                else:
+                    code, media_types = str(code), None
+                content_response = self._get_response_for_code(serializer, code, media_types, direction)
+                if code in responses:
+                    responses[code]['content'].update(content_response['content'])
+                else:
+                    responses[code] = content_response
+            return responses
+
+        else:
+            response = super()._get_response_bodies(direction)
+            return response
+
+    def _get_response_for_code(self, serializer, status_code, media_types=None, direction='response'):
+        if hasattr(serializer, 'dto_name'):
+            if isinstance(serializer, OpenApiResponse):
+                serializer, description, examples = (
+                    serializer.response, serializer.description, serializer.examples
+                )
+            else:
+                description, examples = '', []
+
+            serializer: BaseDTO
+            component = self.resolve_dto(serializer)
+            headers = self._get_response_headers_for_code(status_code, direction)
+            headers = {'headers': headers} if headers else {}
+
+            if not media_types:
+                media_types = self.map_renderers('media_type')
+            media_types = modify_media_types_for_versioning(self.view, media_types)
+
+            return {
+                **headers,
+                'content': {
+                    media_type: build_media_type_object(
+                        component.ref,
+                        self._get_examples(component, direction, media_type, status_code, examples)
+                    )
+                    for media_type in media_types
+                },
+                'description': description
+            }
+        elif isinstance(serializer, str):
+            description, examples = '', []
+            serializer: ErrorStatus
+            headers = self._get_response_headers_for_code(status_code, direction)
+            headers = {'headers': headers} if headers else {}
+
+            if not media_types:
+                media_types = self.map_renderers('media_type')
+            media_types = modify_media_types_for_versioning(self.view, media_types)
+
+            schema = {
+                'type': 'object',
+                'properties': {
+                    'status_code': {'type': 'integer'},
+                    'code': {'type': 'integer'},
+                    'errors': {'type': 'string'},
+                },
+            }
+
+            return {
+                **headers,
+                'content': {
+                    media_type: build_media_type_object(
+                        schema,
+                        self._get_examples(schema, direction, media_type, status_code, examples)
+                    )
+                    for media_type in media_types
+                },
+                'description': serializer
+            }
+
+        else:
+            super()._get_response_for_code(serializer, '200', media_types, direction)
+
+    def _get_request_body(self, direction='request'):
+        if self.method not in ('PUT', 'PATCH', 'POST'):
+            return None
+
+        request_serializers = self.get_request_serializer()
+
+        if hasattr(request_serializers, 'dto_name'):
+            request_serializers: BaseDTO
+            component = self.resolve_dto(request_serializers)
+            request = {'content': {'application/json': {'schema': component.ref}}}
+            return request
+        else:
+            request = super()._get_request_body(direction)
+            return request
+
+    def resolve_dto(self, dto,) -> ResolvedComponent:
+        component = ResolvedComponent(
+            name=dto.dto_name,
+            type=ResolvedComponent.SCHEMA,
+            object=dto,
+        )
+        if component not in self.registry:
+            dto.schema_render(self)
+
+        return self.registry[component]
@@ -20,4 +20,11 @@
 AWS_S3_HOST = 's3.%s.amazonaws.com' % AWS_REGION
 MEDIA_URL = "https://%s/" % AWS_S3_CUSTOM_DOMAIN
 
-STATIC_URL = "https://%s/static/" % AWS_S3_CUSTOM_DOMAIN
+STATIC_URL = "https://%s/static/" % AWS_S3_CUSTOM_DOMAIN
+
+KAKAO_CLIENT_SECRET = get_secrets('KAKAO_CLIENT_SECRET')
+KAKAO_REST_API_KEY = get_secrets('KAKAO_REST_API_KEY')
+DJANGO_SECRET_KEY = get_secrets('DJANGO_SECRET_KEY')
+KAKAO_CALLBACK_URI = get_secrets('KAKAO_CALLBACK_URI')
+LOGIN_REDIRECT_URL = get_secrets('LOGIN_REDIRECT_URL')
+KAKAO_ADMIN_KEY = get_secrets('KAKAO_ADMIN_KEY')
@@ -16,4 +16,41 @@
 AWS_S3_HOST = 's3.%s.amazonaws.com' % AWS_REGION
 MEDIA_URL = "https://%s/" % AWS_S3_CUSTOM_DOMAIN
 
-STATIC_URL = "https://%s/static/" % AWS_S3_CUSTOM_DOMAIN
+STATIC_URL = "https://%s/static/" % AWS_S3_CUSTOM_DOMAIN
+
+KAKAO_CLIENT_SECRET = get_secrets('KAKAO_CLIENT_SECRET')
+KAKAO_REST_API_KEY = get_secrets('KAKAO_REST_API_KEY')
+KAKAO_ADMIN = get_secrets('KAKAO_ADMIN')
+
+DJANGO_SECRET_KEY = get_secrets('DJANGO_SECRET_KEY')
+KAKAO_CALLBACK_URI = get_secrets('KAKAO_CALLBACK_URI')
+LOGIN_REDIRECT_URL = get_secrets('LOGIN_REDIRECT_URL')
+KAKAO_ADMIN_KEY = get_secrets('KAKAO_ADMIN_KEY')
+
+SOCIALACCOUNT_PROVIDERS = {
+    "kakao": {
+        "APP": {
+            "client_id": get_secrets('KAKAO_REST_API_KEY'),
+            "secret": get_secrets('KAKAO_CLIENT_SECRET')
+        }
+    },
+
+    "apple": {
+        "APP": {
+            # Your service identifier.
+            # todo apple login시에 알맞게 바꿔야함
+            "client_id": "com.bunkerkids.shipdan.web,com.bunkerkids.shipdan",
+
+            # The Key ID (visible in the "View Key Details" page).
+            "secret": get_secrets('APPLE_SECRET_KEY'),
+
+            # Member ID/App ID Prefix -- you can find it below your name
+            # at the top right corner of the page, or it’s your App ID
+            # Prefix in your App ID.
+            "key": "V3ZYVUVY76",
+
+            # The certificate you downloaded when generating the key.
+            "certificate_key": get_secrets('APPLE_CERTIFICATE_KEY').replace('\\n', '\n')
+        }
+    }
+}
@@ -23,6 +23,10 @@
 urlpatterns = [
     path("admin/", admin.site.urls),
 
+    path('api/accounts/', include('accounts.urls')),
+    path('api/social/', include('social_app.urls', 'social')),
+    path('api/allauth/', include('allauth.urls')),
+
     path('api/records/', include('records.urls', 'records')),
 ]
 
 
@@ -0,0 +1,61 @@
+from django import forms
+from django.contrib import admin
+from django.contrib.auth.admin import UserAdmin
+from django.db.models import QuerySet
+from rest_framework_simplejwt.tokens import SlidingToken
+
+from accounts.models import CommonProfile, User
+
+
+class CommonProfileAdmin(admin.ModelAdmin):
+    list_display = ['id', 'name']
+
+
+admin.site.register(CommonProfile, CommonProfileAdmin)
+
+
+class UserCreationForm(forms.ModelForm):
+    class Meta:
+        model = User
+        fields = ('email',)
+
+    def save(self, commit=True):
+        # Save the provided password in hashed format
+        user = super(UserCreationForm, self).save(commit=False)
+        user.set_password(self.cleaned_data["password"])
+        if commit:
+            user.save()
+        return user
+
+
+class UserAdmin(UserAdmin):
+    add_form = UserCreationForm
+    list_display = ['id', 'email', 'name', 'is_staff']
+    ordering = ("-id",)
+    search_fields = ('email', 'common_profile__name', )
+
+    fieldsets = (
+        (None, {'fields': ('email', 'password', 'is_staff', 'is_superuser', 'groups', 'token')}),
+    )
+    add_fieldsets = (
+        (None, {
+            'classes': ('wide',),
+            'fields': ('email', 'password', 'is_superuser', 'is_staff', 'is_active', 'groups')}
+         ),
+    )
+    readonly_fields = ('token',)
+
+    def token(self, obj: User):
+        jwt_token = str(SlidingToken.for_user(obj))
+        return jwt_token
+
+    def get_queryset(self, request):
+        queryset: QuerySet = super().get_queryset(request)
+        queryset = queryset.select_related('common_profile')
+        return queryset
+
+    def name(self, obj):
+        return obj.common_profile.name
+
+
+admin.site.register(User, UserAdmin)
@@ -1,6 +1,6 @@
 from django.apps import AppConfig
 
 
-class UsersConfig(AppConfig):
+class AccountsConfig(AppConfig):
     default_auto_field = "django.db.models.BigAutoField"
-    name = "users"
+    name = "accounts"
Original file line number	Diff line number	Diff line change
`@@ -23,6 +23,10 @@`
`23`	`23`	`urlpatterns = [`
`24`	`24`	`path("admin/", admin.site.urls),`
`25`	`25`
	`26`	`+ path('api/accounts/', include('accounts.urls')),`
	`27`	`+ path('api/social/', include('social_app.urls', 'social')),`
	`28`	`+ path('api/allauth/', include('allauth.urls')),`
	`29`	`+`
`26`	`30`	`path('api/records/', include('records.urls', 'records')),`
`27`	`31`	`]`
`28`	`32`