✨Feat: jwt기반 사용자 회원가입/로그인 기능 구현

Author: imjuyongp

build.gradle

@@ -21,9 +21,11 @@ repositories {
 dependencies {
     // web
     implementation 'org.springframework.boot:spring-boot-starter-web'
-    implementation 'org.springframework.boot:spring-boot-starter-security'
     implementation 'org.springframework.boot:spring-boot-starter-validation'
 
+    // security
+    implementation 'org.springframework.boot:spring-boot-starter-security'
+
     // Lombok
     compileOnly 'org.projectlombok:lombok'
     annotationProcessor 'org.projectlombok:lombok'
@@ -41,6 +43,11 @@ dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
     runtimeOnly 'org.postgresql:postgresql'
 
+    // JWT
+    implementation 'io.jsonwebtoken:jjwt-api:0.11.5'
+    runtimeOnly 'io.jsonwebtoken:jjwt-impl:0.11.5'
+    runtimeOnly 'io.jsonwebtoken:jjwt-jackson:0.11.5'
+
     // AWS S3
     implementation 'org.springframework.cloud:spring-cloud-starter-aws:2.2.6.RELEASE'
 }

src/main/java/com/be/sportizebe/domain/auth/controller/AuthController.java

@@ -0,0 +1,31 @@
+package com.be.sportizebe.domain.auth.controller;
+
+import com.be.sportizebe.domain.auth.dto.request.LoginRequest;
+import com.be.sportizebe.domain.auth.dto.response.LoginResponse;
+import com.be.sportizebe.domain.auth.service.AuthService;
+import com.be.sportizebe.global.response.BaseResponse;
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.tags.Tag;
+import jakarta.validation.Valid;
+import lombok.RequiredArgsConstructor;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/api/auth")
+@Tag(name = "auth", description = "인증 관련 API")
+public class AuthController {
+
+    private final AuthService authService;
+
+    @PostMapping("/login")
+    @Operation(summary = "로그인", description = "이메일과 비밀번호로 로그인")
+    public ResponseEntity<BaseResponse<LoginResponse>> login(@RequestBody @Valid LoginRequest request) {
+        LoginResponse response = authService.login(request);
+        return ResponseEntity.ok(BaseResponse.success("로그인 성공", response));
+    }
+}

src/main/java/com/be/sportizebe/domain/auth/dto/request/LoginRequest.java

@@ -1,4 +1,14 @@
 package com.be.sportizebe.domain.auth.dto.request;
 
-public class LoginRequest {
-}
+import jakarta.validation.constraints.Email;
+import jakarta.validation.constraints.NotBlank;
+
+public record LoginRequest(
+    @NotBlank(message = "아이디를 입력해주세요.")
+    @Email(message = "아이디는 이메일 형식만 지원합니다.")
+    String username,
+
+    @NotBlank(message = "비밀번호를 입력해주세요.")
+    String password
+) {
+}

src/main/java/com/be/sportizebe/domain/auth/dto/response/LoginResponse.java

@@ -1,4 +1,25 @@
 package com.be.sportizebe.domain.auth.dto.response;
 
-public class LoginResponse {
-}
+import com.be.sportizebe.domain.user.entity.Role;
+import io.swagger.v3.oas.annotations.media.Schema;
+
+public record LoginResponse(
+    @Schema(description = "액세스 토큰", example = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...")
+    String accessToken,
+
+    @Schema(description = "리프레시 토큰", example = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...")
+    String refreshToken,
+
+    @Schema(description = "사용자 식별자", example = "1")
+    Long userId,
+
+    @Schema(description = "사용자 아이디(이메일 형식)", example = "imjuyongp@gmail.com")
+    String username,
+
+    @Schema(description = "사용자 권한", example = "USER")
+    Role role
+) {
+    public static LoginResponse of(String accessToken, String refreshToken, Long userId, String username, Role role) {
+        return new LoginResponse(accessToken, refreshToken, userId, username, role);
+    }
+}

src/main/java/com/be/sportizebe/domain/auth/exception/AuthErrorCode.java

@@ -1,4 +1,32 @@
 package com.be.sportizebe.domain.auth.exception;
 
-public enum AuthErrorCode {
+import com.be.sportizebe.global.exception.model.BaseErrorCode;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import org.springframework.http.HttpStatus;
+
+@Getter
+@AllArgsConstructor
+public enum AuthErrorCode implements BaseErrorCode {
+  LOGIN_FAIL("AUTH_4001", "로그인 처리 중 오류 발생", HttpStatus.BAD_REQUEST),
+  TOKEN_FAIL("AUTH_4002", "액세스 토큰 요청 실패", HttpStatus.UNAUTHORIZED),
+  USER_INFO_FAIL("AUTH_4003", "사용자 정보 요청 실패", HttpStatus.UNAUTHORIZED),
+  INVALID_ACCESS_TOKEN("AUTH_4004", "유효하지 않은 액세스 토큰입니다.", HttpStatus.UNAUTHORIZED),
+  ACCESS_TOKEN_EXPIRED("AUTH_4005", "액세스 토큰이 만료되었습니다.", HttpStatus.UNAUTHORIZED),
+  REFRESH_TOKEN_REQUIRED("AUTH_4006", "리프레시 토큰이 필요합니다.", HttpStatus.FORBIDDEN),
+
+  JWT_TOKEN_EXPIRED("JWT_4001", "JWT 토큰이 만료되었습니다.", HttpStatus.UNAUTHORIZED),
+  UNSUPPORTED_TOKEN("JWT_4002", "지원되지 않는 JWT 형식입니다.", HttpStatus.UNAUTHORIZED),
+  MALFORMED_JWT_TOKEN("JWT_4003", "JWT 형식이 올바르지 않습니다.", HttpStatus.UNAUTHORIZED),
+  INVALID_SIGNATURE("JWT_4004", "JWT 서명이 유효하지 않습니다.", HttpStatus.UNAUTHORIZED),
+  ILLEGAL_ARGUMENT("JWT_4005", "JWT 토큰 값이 잘못되었습니다.", HttpStatus.UNAUTHORIZED),
+
+  INVALID_AUTH_CONTEXT("AUTH_4007", "SecurityContext에 인증 정보가 없습니다.", HttpStatus.UNAUTHORIZED),
+  AUTHENTICATION_NOT_FOUND("AUTH_4008", "로그인이 필요합니다.", HttpStatus.UNAUTHORIZED),
+  INVALID_PASSWORD("AUTH_4009", "비밀번호가 일치하지 않습니다.", HttpStatus.UNAUTHORIZED),
+  ;
+
+  private final String code;
+  private final String message;
+  private final HttpStatus status;
 }

src/main/java/com/be/sportizebe/domain/auth/service/AuthService.java

@@ -1,4 +1,44 @@
 package com.be.sportizebe.domain.auth.service;
 
+import com.be.sportizebe.domain.auth.dto.request.LoginRequest;
+import com.be.sportizebe.domain.auth.dto.response.LoginResponse;
+import com.be.sportizebe.domain.auth.exception.AuthErrorCode;
+import com.be.sportizebe.domain.user.entity.User;
+import com.be.sportizebe.domain.user.exception.UserErrorCode;
+import com.be.sportizebe.domain.user.repository.UserRepository;
+import com.be.sportizebe.global.exception.CustomException;
+import com.be.sportizebe.global.jwt.JwtProvider;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.security.crypto.password.PasswordEncoder;
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+@Service
+@Slf4j
+@RequiredArgsConstructor
 public class AuthService {
-}
+
+    private final JwtProvider jwtProvider;
+    private final UserRepository userRepository;
+    private final PasswordEncoder passwordEncoder;
+
+    @Transactional
+    public LoginResponse login(LoginRequest request) {
+        User user = userRepository.findByUsername(request.username())
+            .orElseThrow(() -> new CustomException(UserErrorCode.USER_NOT_FOUND));
+
+        if (!passwordEncoder.matches(request.password(), user.getPassword())) {
+            throw new CustomException(AuthErrorCode.INVALID_PASSWORD);
+        }
+
+        String accessToken = jwtProvider.createAccessToken(user.getId());
+        String refreshToken = jwtProvider.createRefreshToken(user.getId());
+
+        user.updateRefreshToken(refreshToken);
+
+        log.info("로그인 성공: {}", user.getUsername());
+
+        return LoginResponse.of(accessToken, refreshToken, user.getId(), user.getUsername(), user.getRole());
+    }
+}

src/main/java/com/be/sportizebe/domain/user/controller/UserController.java

@@ -1,4 +1,33 @@
 package com.be.sportizebe.domain.user.controller;
 
+import com.be.sportizebe.domain.user.dto.request.SignUpRequest;
+import com.be.sportizebe.domain.user.dto.response.SignUpResponse;
+import com.be.sportizebe.domain.user.service.UserService;
+import com.be.sportizebe.global.response.BaseResponse;
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.tags.Tag;
+import jakarta.validation.Valid;
+import lombok.RequiredArgsConstructor;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/api/users")
+@Tag(name = "user", description = "사용자 관련 API")
 public class UserController {
-}
+
+    private final UserService userService;
+
+    @PostMapping("/signup")
+    @Operation(summary = "회원가입", description = "이메일과 비밀번호로 회원가입")
+    public ResponseEntity<BaseResponse<SignUpResponse>> signUp(@RequestBody @Valid SignUpRequest request) {
+        SignUpResponse response = userService.signUp(request);
+        return ResponseEntity.status(HttpStatus.CREATED)
+            .body(BaseResponse.success("회원가입 성공", response));
+    }
+}

src/main/java/com/be/sportizebe/domain/user/dto/request/SignUpRequest.java

@@ -1,4 +1,19 @@
 package com.be.sportizebe.domain.user.dto.request;
 
-public class SignUpRequest {
-}
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.Email;
+import jakarta.validation.constraints.NotBlank;
+import jakarta.validation.constraints.Size;
+
+public record SignUpRequest(
+    @Schema(description = "사용자 아이디(이메일 형식)", example = "user@example.com")
+    @NotBlank(message = "아이디를 입력해주세요.")
+    @Email(message = "아이디는 이메일 형식만 지원합니다.")
+    String username,
+
+    @Schema(description = "비밀번호", example = "password123")
+    @NotBlank(message = "비밀번호를 입력해주세요.")
+    // @Size(min = 8, message = "비밀번호는 8자 이상이어야 합니다.")
+    String password
+) {
+}

src/main/java/com/be/sportizebe/domain/user/dto/response/SignUpResponse.java

@@ -1,4 +1,20 @@
 package com.be.sportizebe.domain.user.dto.response;
 
-public class SignUpResponse {
-}
+import com.be.sportizebe.domain.user.entity.Role;
+import com.be.sportizebe.domain.user.entity.User;
+import io.swagger.v3.oas.annotations.media.Schema;
+
+public record SignUpResponse(
+    @Schema(description = "사용자 식별자", example = "1")
+    Long userId,
+
+    @Schema(description = "사용자 아이디(이메일 형식)", example = "user@example.com")
+    String username,
+
+    @Schema(description = "사용자 권한", example = "USER")
+    Role role
+) {
+    public static SignUpResponse from(User user) {
+        return new SignUpResponse(user.getId(), user.getUsername(), user.getRole());
+    }
+}

src/main/java/com/be/sportizebe/domain/user/entity/User.java

@@ -31,7 +31,6 @@ public class User extends BaseTimeEntity {
     @JsonIgnore // 응답 시 데이터를 json 형식으로 보낼때 이 부분은 보내지 않는다
     private String password;
 
-    @Column(nullable = false)
     @JsonIgnore
     private String refreshToken;
 
@@ -45,4 +44,8 @@ public class User extends BaseTimeEntity {
     @OneToMany(mappedBy = "user", cascade = CascadeType.ALL, orphanRemoval = true)
     @Builder.Default
     private List<Post> posts = new ArrayList<>(); // 작성한 게시글 목록
+
+    public void updateRefreshToken(String refreshToken) {
+        this.refreshToken = refreshToken;
+    }
 }