CAPS-DGU
diff --git a/‎…ps/domain/member/controller/AuthApi.java‎ ‎…caps/domain/auth/controller/AuthApi.java‎src/main/java/kr/dgucaps/caps/domain/member/controller/AuthApi.java renamed to src/main/java/kr/dgucaps/caps/domain/auth/controller/AuthApi.java
Lines changed: 10 additions & 23 deletions b/‎…ps/domain/member/controller/AuthApi.java‎ ‎…caps/domain/auth/controller/AuthApi.java‎src/main/java/kr/dgucaps/caps/domain/member/controller/AuthApi.java renamed to src/main/java/kr/dgucaps/caps/domain/auth/controller/AuthApi.java
Lines changed: 10 additions & 23 deletions
diff --git a/‎…in/member/controller/AuthController.java‎ ‎…main/auth/controller/AuthController.java‎src/main/java/kr/dgucaps/caps/domain/member/controller/AuthController.java renamed to src/main/java/kr/dgucaps/caps/domain/auth/controller/AuthController.java
Lines changed: 11 additions & 17 deletions b/‎…in/member/controller/AuthController.java‎ ‎…main/auth/controller/AuthController.java‎src/main/java/kr/dgucaps/caps/domain/member/controller/AuthController.java renamed to src/main/java/kr/dgucaps/caps/domain/auth/controller/AuthController.java
Lines changed: 11 additions & 17 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/AuthDto.java‎
Lines changed: 21 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/AuthDto.java‎
Lines changed: 21 additions & 0 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/CustomOAuth2User.java‎
Lines changed: 34 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/CustomOAuth2User.java‎
Lines changed: 34 additions & 0 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/KakaoResponseDto.java‎
Lines changed: 51 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/KakaoResponseDto.java‎
Lines changed: 51 additions & 0 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/OAuth2ResponseDto.java‎
Lines changed: 12 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/dto/OAuth2ResponseDto.java‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/service/AuthService.java‎
Lines changed: 73 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/service/AuthService.java‎
Lines changed: 73 additions & 0 deletions
diff --git a/‎src/main/java/kr/dgucaps/caps/domain/auth/service/CustomOAuth2UserService.java‎
Lines changed: 51 additions & 0 deletions b/‎src/main/java/kr/dgucaps/caps/domain/auth/service/CustomOAuth2UserService.java‎
Lines changed: 51 additions & 0 deletions
@@ -1,4 +1,4 @@
-package kr.dgucaps.caps.domain.member.controller;
+package kr.dgucaps.caps.domain.auth.controller;
 
 import io.swagger.v3.oas.annotations.Operation;
 import io.swagger.v3.oas.annotations.media.Content;
@@ -9,12 +9,10 @@
 import jakarta.servlet.http.HttpServletResponse;
 import jakarta.validation.Valid;
 import kr.dgucaps.caps.domain.member.dto.request.CompleteRegistrationRequest;
-import kr.dgucaps.caps.domain.member.dto.response.AuthInfoResponse;
 import kr.dgucaps.caps.domain.member.dto.response.MemberInfoResponse;
-import kr.dgucaps.caps.domain.member.entity.Member;
+import kr.dgucaps.caps.global.annotation.Auth;
 import kr.dgucaps.caps.global.common.SuccessResponse;
 import org.springframework.http.ResponseEntity;
-import org.springframework.security.core.annotation.AuthenticationPrincipal;
 import org.springframework.web.bind.annotation.CookieValue;
 import org.springframework.web.bind.annotation.RequestBody;
 
@@ -29,8 +27,9 @@ public interface AuthApi {
             content = @Content(mediaType = "application/json",
                     schema = @Schema(implementation = MemberInfoResponse.class))
     )
-    ResponseEntity<SuccessResponse<?>> completeRegistration(@AuthenticationPrincipal(expression = "member") Member member,
-                                                                   @RequestBody @Valid CompleteRegistrationRequest request);
+    ResponseEntity<SuccessResponse<?>> completeRegistration(@Auth Long memberId,
+                                                            @RequestBody @Valid CompleteRegistrationRequest request,
+                                                            HttpServletResponse response);
 
     @Operation(
             summary = "로그아웃",
@@ -39,7 +38,7 @@ ResponseEntity<SuccessResponse<?>> completeRegistration(@AuthenticationPrincipal
                     "클라이언트의 액세스, 리프레쉬 토큰을 삭제해야합니다."
     )
     @ApiResponse(responseCode = "204", description = "로그아웃 성공")
-    ResponseEntity<SuccessResponse<?>> logout(@AuthenticationPrincipal(expression = "member") Member member);
+    ResponseEntity<SuccessResponse<?>> logout(@Auth Long memberId, HttpServletResponse response);
 
     @Operation(
             summary = "토큰 재발급",
@@ -48,22 +47,10 @@ ResponseEntity<SuccessResponse<?>> completeRegistration(@AuthenticationPrincipal
                     "재발급한 토큰은 쿠키로 저장됩니다."
     )
     @ApiResponses({
-        @ApiResponse(responseCode = "200", description = "토큰 재발급 성공"),
-        @ApiResponse(responseCode = "401", description = "리프레쉬 토큰이 유효하지 않음"),
-        @ApiResponse(responseCode = "500", description = "리프레쉬 토큰이 파싱 실패"),
+            @ApiResponse(responseCode = "200", description = "토큰 재발급 성공"),
+            @ApiResponse(responseCode = "401", description = "리프레쉬 토큰이 유효하지 않음"),
+            @ApiResponse(responseCode = "500", description = "리프레쉬 토큰이 파싱 실패"),
     })
     ResponseEntity<SuccessResponse<?>> reissueToken(@CookieValue(value = "refreshToken", required = false) String refreshToken,
-                                                           HttpServletResponse response);
-
-    @Operation(
-            summary = "인증 정보 조회",
-            description = "현재 로그인한 사용자의 인증 정보 및 온보딩 완료 여부를 조회합니다."
-    )
-    @ApiResponses({
-            @ApiResponse(responseCode = "200", description = "인증 정보 조회 성공",
-                    content = @Content(mediaType = "application/json",
-                            schema = @Schema(implementation = AuthInfoResponse.class))),
-            @ApiResponse(responseCode = "401", description = "인증 정보가 없음")
-    })
-    ResponseEntity<SuccessResponse<?>> getAuthInfo(@AuthenticationPrincipal(expression = "member") Member member);
+                                                    HttpServletResponse response);
 }
@@ -1,15 +1,13 @@
-package kr.dgucaps.caps.domain.member.controller;
+package kr.dgucaps.caps.domain.auth.controller;
 
 import jakarta.servlet.http.HttpServletResponse;
 import jakarta.validation.Valid;
+import kr.dgucaps.caps.domain.auth.service.AuthService;
 import kr.dgucaps.caps.domain.member.dto.request.CompleteRegistrationRequest;
-import kr.dgucaps.caps.domain.member.entity.Member;
-import kr.dgucaps.caps.domain.member.service.AuthService;
-import kr.dgucaps.caps.domain.member.service.TokenService;
+import kr.dgucaps.caps.global.annotation.Auth;
 import kr.dgucaps.caps.global.common.SuccessResponse;
 import lombok.RequiredArgsConstructor;
 import org.springframework.http.ResponseEntity;
-import org.springframework.security.core.annotation.AuthenticationPrincipal;
 import org.springframework.web.bind.annotation.*;
 
 @RestController
@@ -18,32 +16,28 @@
 public class AuthController implements AuthApi {
 
     private final AuthService authService;
-    private final TokenService tokenService;
 
     // 회원가입 후 추가 정보 입력
     @PatchMapping("/complete-registration")
-    public ResponseEntity<SuccessResponse<?>> completeRegistration(@AuthenticationPrincipal(expression = "member") Member member,
-                                                                   @RequestBody @Valid CompleteRegistrationRequest request) {
-        return SuccessResponse.ok(authService.completeRegistration(member, request));
+    public ResponseEntity<SuccessResponse<?>> completeRegistration(@Auth Long memberId,
+                                                                   @RequestBody @Valid CompleteRegistrationRequest request,
+                                                                   HttpServletResponse response) {
+        authService.completeRegistration(memberId, request, response);
+        return SuccessResponse.noContent();
     }
 
     // 로그아웃
     @PostMapping("/logout")
-    public ResponseEntity<SuccessResponse<?>> logout(@AuthenticationPrincipal(expression = "member") Member member) {
-        tokenService.logout(member);
+    public ResponseEntity<SuccessResponse<?>> logout(@Auth Long memberId, HttpServletResponse response) {
+        authService.logout(memberId, response);
         return SuccessResponse.noContent();
     }
 
     // 리프레쉬 토큰 재발급
     @PostMapping("/reissue")
     public ResponseEntity<SuccessResponse<?>> reissueToken(@CookieValue(value = "refreshToken", required = false) String refreshToken,
                                                            HttpServletResponse response) {
-        tokenService.reissue(refreshToken, response);
+        authService.reissueToken(refreshToken, response);
         return SuccessResponse.noContent();
     }
-
-    @GetMapping("/me")
-    public ResponseEntity<SuccessResponse<?>> getAuthInfo(@AuthenticationPrincipal(expression = "member") Member member) {
-        return SuccessResponse.ok(authService.getAuthInfo(member));
-    }
 }
@@ -0,0 +1,21 @@
+package kr.dgucaps.caps.domain.auth.dto;
+
+import kr.dgucaps.caps.domain.member.entity.Role;
+import lombok.Builder;
+
+@Builder
+public record AuthDto(
+        long memberId,
+        String oAuthId,
+        String name,
+        Role role
+) {
+    public static AuthDto of(long memberId, String providerId, String name, Role role) {
+        return AuthDto.builder()
+                .memberId(memberId)
+                .oAuthId(providerId)
+                .name(name)
+                .role(role)
+                .build();
+    }
+}
@@ -0,0 +1,34 @@
+package kr.dgucaps.caps.domain.auth.dto;
+
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.oauth2.core.user.OAuth2User;
+
+import java.util.Collection;
+import java.util.Map;
+
+public record CustomOAuth2User(
+        AuthDto authDto
+) implements OAuth2User {
+    @Override
+    public Map<String, Object> getAttributes() {
+        return null;
+    }
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return null;
+    }
+
+    @Override
+    public String getName() {
+        return String.valueOf(authDto.memberId());
+    }
+
+    public String getOAuthId() {
+        return authDto.oAuthId();
+    }
+
+    public String getUserName() {
+        return authDto.name();
+    }
+}
@@ -0,0 +1,51 @@
+package kr.dgucaps.caps.domain.auth.dto;
+
+import java.util.Map;
+
+public record KakaoResponseDto(
+        Map<String, Object> attribute
+) implements OAuth2ResponseDto {
+    private Map<String, Object> getKakaoAccount() {
+        return (Map<String, Object>) attribute.get("kakao_account");
+    }
+
+    private Map<String, Object> getKakaoProfile() {
+        return (Map<String, Object>) getKakaoAccount().get("profile");
+    }
+
+    @Override
+    public String getProviderId() {
+        return attribute.get("id").toString();
+    }
+
+    @Override
+    public String getName() {
+        Map<String, Object> kakaoProfile = (Map<String, Object>) getKakaoAccount().get("profile");
+        return kakaoProfile.get("nickname").toString();
+    }
+
+    @Override
+    public String getEmail() {
+        return getKakaoAccount().get("email").toString();
+    }
+
+    @Override
+    public String getProfileImageUrl() {
+        return getKakaoProfile().get("profile_image_url").toString();
+    }
+}
+
+/*
+ * Kakao 응답 예시:
+ * {
+ *  "id": 123456789,
+ *  "kakao_account": {
+ *      "profile": {
+ *          "profile_image_url": "http://yyy.kakao.com/dn/.../img_640x640.jpg"
+ *      },
+ *      "name": "홍길동",
+ *      "email": "sample@sample.com",
+ *      "phone_number": "+82 010-1234-5678"
+ *      }
+ *  }
+ */
@@ -0,0 +1,12 @@
+package kr.dgucaps.caps.domain.auth.dto;
+
+public interface OAuth2ResponseDto {
+
+    String getProviderId();
+
+    String getName();
+
+    String getEmail();
+
+    String getProfileImageUrl();
+}
@@ -0,0 +1,73 @@
+package kr.dgucaps.caps.domain.auth.service;
+
+import jakarta.servlet.http.HttpServletResponse;
+import kr.dgucaps.caps.domain.member.dto.request.CompleteRegistrationRequest;
+import kr.dgucaps.caps.domain.member.entity.Member;
+import kr.dgucaps.caps.domain.member.repository.MemberRepository;
+import kr.dgucaps.caps.domain.redis.entity.RefreshToken;
+import kr.dgucaps.caps.domain.redis.repository.RefreshTokenRepository;
+import kr.dgucaps.caps.global.config.auth.jwt.JwtProvider;
+import kr.dgucaps.caps.global.error.ErrorCode;
+import kr.dgucaps.caps.global.error.exception.EntityNotFoundException;
+import kr.dgucaps.caps.global.error.exception.UnauthorizedException;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.Authentication;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+import org.springframework.util.StringUtils;
+
+@Service
+@RequiredArgsConstructor
+@Transactional(readOnly = true)
+public class AuthService {
+
+    private final JwtProvider jwtProvider;
+    private final RefreshTokenRepository refreshTokenRepository;
+    private final MemberRepository memberRepository;
+
+    public void reissueToken(String refreshToken, HttpServletResponse response) {
+        if (!StringUtils.hasText(refreshToken)) {
+            throw new UnauthorizedException(ErrorCode.REFRESH_TOKEN_NOT_FOUND);
+        }
+        jwtProvider.validateRefreshToken(refreshToken);
+        Authentication authentication = jwtProvider.getAuthentication(refreshToken);
+
+        // Redis에 저장된 refreshToken과 비교하여 일치하는지 확인
+        String memberId = authentication.getName();
+        RefreshToken refreshTokenEntity = refreshTokenRepository.findById(memberId)
+                .orElseThrow(() -> new UnauthorizedException(ErrorCode.NOT_MATCH_REFRESH_TOKEN));
+        if (!refreshTokenEntity.getRefreshToken().equals(refreshToken)) {
+            throw new UnauthorizedException(ErrorCode.NOT_MATCH_REFRESH_TOKEN);
+        }
+
+        // 새로 accessToken과 refreshToken 발급
+        String newAccessToken = jwtProvider.generateAccessToken(authentication);
+        String newRefreshToken = jwtProvider.generateRefreshToken(authentication);
+
+        // Redis에 새로 발급한 refreshToken 저장
+        RefreshToken newRefreshTokenEntity = new RefreshToken(memberId, newRefreshToken);
+        refreshTokenRepository.save(newRefreshTokenEntity);
+
+        jwtProvider.writeTokenCookies(response, newAccessToken, newRefreshToken);
+    }
+
+    public void logout(Long memberId, HttpServletResponse response) {
+        refreshTokenRepository.deleteById(memberId.toString());
+        String accessToken = "";
+        String refreshToken = "";
+        jwtProvider.writeTokenCookies(response, accessToken, refreshToken);
+    }
+
+    @Transactional
+    public void completeRegistration(Long memberId, CompleteRegistrationRequest request, HttpServletResponse response) {
+        Member member = memberRepository.findById(memberId)
+                .orElseThrow(() -> new EntityNotFoundException(ErrorCode.MEMBER_NOT_FOUND));
+        member.completeRegistration(request.studentNumber(), request.grade(), request.phoneNumber());
+
+        Authentication authentication = new UsernamePasswordAuthenticationToken(String.valueOf(memberId), null, null);
+        String accessToken = jwtProvider.generateAccessToken(authentication);
+        String refreshToken = jwtProvider.generateRefreshToken(authentication);
+        jwtProvider.writeTokenCookies(response, accessToken, refreshToken);
+    }
+}
@@ -0,0 +1,51 @@
+package kr.dgucaps.caps.domain.auth.service;
+
+import kr.dgucaps.caps.domain.auth.dto.AuthDto;
+import kr.dgucaps.caps.domain.auth.dto.CustomOAuth2User;
+import kr.dgucaps.caps.domain.auth.dto.KakaoResponseDto;
+import kr.dgucaps.caps.domain.auth.dto.OAuth2ResponseDto;
+import kr.dgucaps.caps.domain.member.entity.Member;
+import kr.dgucaps.caps.domain.member.repository.MemberRepository;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.oauth2.client.userinfo.DefaultOAuth2UserService;
+import org.springframework.security.oauth2.client.userinfo.OAuth2UserRequest;
+import org.springframework.security.oauth2.core.OAuth2AuthenticationException;
+import org.springframework.security.oauth2.core.user.OAuth2User;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+@Service
+@RequiredArgsConstructor
+public class CustomOAuth2UserService extends DefaultOAuth2UserService {
+
+    private final MemberRepository memberRepository;
+
+    @Override
+    @Transactional
+    public OAuth2User loadUser(OAuth2UserRequest userRequest) throws OAuth2AuthenticationException {
+        OAuth2User oAuth2User = super.loadUser(userRequest);
+        String registrationId = userRequest.getClientRegistration().getRegistrationId();
+        OAuth2ResponseDto oAuth2Response;
+        if (registrationId.equals("kakao")) {
+            oAuth2Response = new KakaoResponseDto(oAuth2User.getAttributes());
+        } else {
+            return null;
+        }
+        String oauthId = oAuth2Response.getProviderId();
+        Member existingMember = memberRepository.findByKakaoId(oauthId);
+        Member member = null;
+        if (existingMember == null) {
+            member = Member.builder()
+                    .kakaoId(oauthId)
+                    .name(oAuth2Response.getName())
+                    .email(oAuth2Response.getEmail())
+                    .profileImageUrl(oAuth2Response.getProfileImageUrl())
+                    .build();
+            member = memberRepository.save(member);
+        } else {
+            member = existingMember;
+        }
+        AuthDto authDto = AuthDto.of(member.getId(), oauthId, oAuth2Response.getName(), member.getRole());
+        return new CustomOAuth2User(authDto);
+    }
+}