feat: 카카오톡 로그인 구현 (#56)

* build: spring-security, jwt, webclient 의존성 추가

* feat: 카카오 로그인 API 및 비즈니스 로직 추가

* fix(KakaoAuthClient): 토큰 API 요청 시 중복 URL path 제거

* refactor(KakaoApiUrlConstant): 카카오 API Url 상수 클래스 추가

* fix: yml에서 key값 받아올 수 있도록 변경

* feat: 회원가입 로직 추가

* style: 메서드명 수정: getAccessToekn -> oAuthLogin

* style: createAuthorizationRedirectUri 매개변수명 수정

* build: weblcient 의존성 추가

* fix: 카카오 로그인 오류 수정

* feat: JWT토큰 필터 추가

* feat: ArgumentResolver 추가 및 resovler 내에 사용자 인가 로직 추가

* feat: @auth 어노테이션으로 사용자 정보 불러오도록 수정

* feat: 사용자 정보 조회 API 추가

* refactor: 불필요한 코드 제거

* chore: yml 파일 수정

---------

Co-authored-by: chanrhan <km1104rs@naver.com>

Author: chanrhan

build.gradle

@@ -62,6 +62,21 @@ dependencies {
     implementation 'net.coobird:thumbnailator:0.4.20'
 
     implementation 'software.amazon.awssdk:s3'
+
+    // WebClient
+    implementation 'org.springframework.boot:spring-boot-starter-webflux'
+
+    // JWT
+    implementation 'io.jsonwebtoken:jjwt-api:0.12.3'
+    runtimeOnly 'io.jsonwebtoken:jjwt-impl:0.12.3'
+    runtimeOnly 'io.jsonwebtoken:jjwt-jackson:0.12.3'
+
+    // Netty MacOS
+    implementation('io.netty:netty-resolver-dns-native-macos') {
+        artifact {
+            classifier = "osx-aarch_64" // Apple Silicon
+        }
+    }
 }
 
 tasks.named('test') {

src/main/java/kr/kro/photoliner/common/dto/response/JwtResponse.java

@@ -0,0 +1,7 @@
+package kr.kro.photoliner.common.dto.response;
+
+public record JwtResponse(
+        String accessToken
+) {
+
+}

src/main/java/kr/kro/photoliner/domain/album/controller/AlbumController.java

@@ -12,6 +12,7 @@
 import kr.kro.photoliner.domain.album.dto.response.AlbumPhotoMarkersResponse;
 import kr.kro.photoliner.domain.album.dto.response.AlbumsResponse;
 import kr.kro.photoliner.domain.album.service.AlbumService;
+import kr.kro.photoliner.global.auth.Auth;
 import lombok.RequiredArgsConstructor;
 import org.springframework.data.domain.Pageable;
 import org.springframework.data.domain.Sort;
@@ -25,7 +26,6 @@
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;
 
 @RestController
@@ -37,48 +37,53 @@ public class AlbumController {
 
     @PostMapping
     public ResponseEntity<AlbumCreateResponse> createAlbum(
-            @Valid @RequestBody AlbumCreateRequest request
+            @Valid @RequestBody AlbumCreateRequest request,
+            @Auth Long userId
     ) {
-        AlbumCreateResponse response = albumService.createAlbum(request);
+        AlbumCreateResponse response = albumService.createAlbum(userId, request);
         return ResponseEntity.status(HttpStatus.CREATED).body(response);
     }
 
     @GetMapping
     public ResponseEntity<AlbumsResponse> getAlbums(
-            @RequestParam Long userId,
-            @PageableDefault(sort = "createdAt", direction = Sort.Direction.DESC) Pageable pageable
+            @PageableDefault(sort = "createdAt", direction = Sort.Direction.DESC) Pageable pageable,
+            @Auth Long userId
     ) {
         return ResponseEntity.ok(albumService.getAlbums(userId, pageable));
     }
 
     @PatchMapping("/{albumId}/title")
     public ResponseEntity<Void> updateAlbumTitle(
             @PathVariable Long albumId,
-            @RequestBody @Valid AlbumTitleUpdateRequest request
+            @RequestBody @Valid AlbumTitleUpdateRequest request,
+            @Auth Long userId
     ) {
         albumService.updateAlbumTitle(albumId, request);
         return ResponseEntity.noContent().build();
     }
 
     @DeleteMapping
     public ResponseEntity<Void> deletePhoto(
-            @Valid @RequestBody AlbumDeleteRequest request
+            @Valid @RequestBody AlbumDeleteRequest request,
+            @Auth Long userId
     ) {
         albumService.deleteAlbums(request);
         return ResponseEntity.noContent().build();
     }
 
     @GetMapping("/{albumId}/photos")
     public ResponseEntity<AlbumPhotoItemsResponse> getAlbumItems(
-            @PathVariable Long albumId
+            @PathVariable Long albumId,
+            @Auth Long userId
     ) {
         return ResponseEntity.ok(albumService.getAlbumPhotoItems(albumId));
     }
 
     @PostMapping("/{albumId}/photos")
     public ResponseEntity<Void> createAlbumItems(
             @PathVariable Long albumId,
-            @RequestBody @Valid AlbumItemCreateRequest request
+            @RequestBody @Valid AlbumItemCreateRequest request,
+            @Auth Long userId
     ) {
         albumService.createAlbumItems(albumId, request);
         return ResponseEntity.noContent().build();
@@ -87,7 +92,8 @@ public ResponseEntity<Void> createAlbumItems(
     @DeleteMapping("/{albumId}/photos")
     public ResponseEntity<Void> deleteAlbumItems(
             @PathVariable Long albumId,
-            @RequestBody @Valid AlbumItemDeleteRequest request
+            @RequestBody @Valid AlbumItemDeleteRequest request,
+            @Auth Long userId
     ) {
         albumService.deleteAlbumItems(albumId, request);
         return ResponseEntity.noContent().build();
@@ -96,7 +102,8 @@ public ResponseEntity<Void> deleteAlbumItems(
     @GetMapping("/{albumId}/markers")
     public ResponseEntity<AlbumPhotoMarkersResponse> getAlbumPhotoMarkers(
             @PathVariable Long albumId,
-            @Valid AlbumPhotoMarkersRequest request
+            @Valid AlbumPhotoMarkersRequest request,
+            @Auth Long userId
     ) {
         return ResponseEntity.ok(albumService.getAlbumPhotoMarkers(albumId, request));
     }

src/main/java/kr/kro/photoliner/domain/album/dto/request/AlbumCreateRequest.java

@@ -1,11 +1,8 @@
 package kr.kro.photoliner.domain.album.dto.request;
 
 import jakarta.validation.constraints.NotEmpty;
-import jakarta.validation.constraints.NotNull;
 
 public record AlbumCreateRequest(
-        @NotNull
-        Long userId,
         @NotEmpty
         String title
 ) {

src/main/java/kr/kro/photoliner/domain/album/service/AlbumService.java

@@ -38,9 +38,9 @@ public class AlbumService {
     private final GeometryFactory geometryFactory;
 
     @Transactional
-    public AlbumCreateResponse createAlbum(AlbumCreateRequest request) {
-        User user = userRepository.findUserById(request.userId())
-                .orElseThrow(() -> CustomException.of(ApiResponseCode.NOT_FOUND_USER, "user id: " + request.userId()));
+    public AlbumCreateResponse createAlbum(Long userId, AlbumCreateRequest request) {
+        User user = userRepository.findUserById(userId)
+                .orElseThrow(() -> CustomException.of(ApiResponseCode.NOT_FOUND_USER, "user id: " + userId));
         Album album = Album.builder()
                 .title(request.title())
                 .user(user)

src/main/java/kr/kro/photoliner/domain/photo/controller/PhotoController.java

@@ -13,6 +13,7 @@
 import kr.kro.photoliner.domain.photo.dto.response.PresignedUrlResponse;
 import kr.kro.photoliner.domain.photo.infra.S3CustomClient;
 import kr.kro.photoliner.domain.photo.service.PhotoService;
+import kr.kro.photoliner.global.auth.Auth;
 import lombok.RequiredArgsConstructor;
 import org.springframework.data.domain.Pageable;
 import org.springframework.data.domain.Sort;
@@ -39,7 +40,7 @@ public class PhotoController {
 
     @GetMapping
     public ResponseEntity<PhotosResponse> getPhotos(
-            @RequestParam Long userId,
+            @Auth Long userId,
             @RequestParam(required = false) Boolean hasLocation,
             @RequestParam(required = false) Boolean hasCapturedDate,
             @PageableDefault(sort = "capturedDt", direction = Sort.Direction.DESC) Pageable pageable
@@ -48,8 +49,11 @@ public ResponseEntity<PhotosResponse> getPhotos(
     }
 
     @GetMapping("/markers")
-    public ResponseEntity<PhotoMarkersResponse> getPhotoMarkers(@Valid PhotoMarkersRequest request) {
-        return ResponseEntity.ok(photoService.getPhotoMarkers(request));
+    public ResponseEntity<PhotoMarkersResponse> getPhotoMarkers(
+            @Valid PhotoMarkersRequest request,
+            @Auth Long userId
+    ) {
+        return ResponseEntity.ok(photoService.getPhotoMarkers(userId, request));
     }
 
     @PostMapping("/presigned-urls")
@@ -62,14 +66,16 @@ public ResponseEntity<List<PresignedUrlResponse>> getPresignedUrls(
 
     @PostMapping
     public ResponseEntity<Void> createPhotos(
-            @Valid @RequestBody CreatePhotosRequest request
+            @Valid @RequestBody CreatePhotosRequest request,
+            @Auth Long userId
     ) {
-        photoService.createPhotos(request);
+        photoService.createPhotos(userId, request);
         return ResponseEntity.status(HttpStatus.CREATED).build();
     }
 
     @PatchMapping("/{photoId}/captured-date")
     public ResponseEntity<Void> updatePhotoCapturedDate(
+            @Auth Long userId,
             @PathVariable Long photoId,
             @Valid @RequestBody PhotoCapturedDateUpdateRequest request
     ) {
@@ -80,15 +86,17 @@ public ResponseEntity<Void> updatePhotoCapturedDate(
     @PatchMapping("/{photoId}/location")
     public ResponseEntity<Void> updatePhotoLocation(
             @PathVariable Long photoId,
-            @Valid @RequestBody PhotoLocationUpdateRequest request
+            @Valid @RequestBody PhotoLocationUpdateRequest request,
+            @Auth Long userId
     ) {
         photoService.updatePhotoLocation(photoId, request);
         return ResponseEntity.noContent().build();
     }
 
     @DeleteMapping
     public ResponseEntity<Void> deletePhoto(
-            @Valid @RequestBody DeletePhotosRequest request
+            @Valid @RequestBody DeletePhotosRequest request,
+            @Auth Long userId
     ) {
         photoService.deletePhotos(request);
         return ResponseEntity.noContent().build();

src/main/java/kr/kro/photoliner/domain/photo/dto/request/CreatePhotosRequest.java

@@ -11,10 +11,6 @@
 import org.locationtech.jts.geom.Coordinate;
 
 public record CreatePhotosRequest(
-        @NotNull
-        Long userId,
-
-        @NotNull
         @NotEmpty
         List<InnerPhoto> photos
 ) {

src/main/java/kr/kro/photoliner/domain/photo/dto/request/PhotoMarkersRequest.java

@@ -2,13 +2,9 @@
 
 import jakarta.validation.constraints.Max;
 import jakarta.validation.constraints.Min;
-import jakarta.validation.constraints.NotNull;
 import org.locationtech.jts.geom.Coordinate;
 
 public record PhotoMarkersRequest(
-        @NotNull @Min(0)
-        Long userId,
-
         @Min(0) @Max(90)
         double swLat,
 

src/main/java/kr/kro/photoliner/domain/photo/service/PhotoService.java

@@ -44,20 +44,20 @@ public PhotosResponse getPhotosByIds(Long userId, Boolean hasLocation, Boolean h
     }
 
     @Transactional(readOnly = true)
-    public PhotoMarkersResponse getPhotoMarkers(PhotoMarkersRequest request) {
+    public PhotoMarkersResponse getPhotoMarkers(Long userId, PhotoMarkersRequest request) {
         Point sw = geometryFactory.createPoint(request.getSouthWestCoordinate());
         Point ne = geometryFactory.createPoint(request.getNorthEastCoordinate());
 
-        Photos photos = photoRepository.getByUserIdInBox(request.userId(), sw, ne);
+        Photos photos = photoRepository.getByUserIdInBox(userId, sw, ne);
 
         return PhotoMarkersResponse.from(photos);
     }
 
     @Transactional
-    public void createPhotos(CreatePhotosRequest request) {
+    public void createPhotos(Long userId, CreatePhotosRequest request) {
         List<Photo> photos = request.photos().stream()
                 .map(photo -> Photo.builder()
-                        .userId(request.userId())
+                        .userId(userId)
                         .fileName(photo.fileName())
                         .filePath(cdnURL + ORIGINAL_BASE_PATH + photo.uploadFileName())
                         .thumbnailPath(cdnURL + THUMBNAIL_BASE_PATH + photo.uploadFileName())

src/main/java/kr/kro/photoliner/domain/user/controller/UserController.java

@@ -1,12 +1,52 @@
 package kr.kro.photoliner.domain.user.controller;
 
+import java.net.URI;
+import kr.kro.photoliner.common.dto.response.JwtResponse;
+import kr.kro.photoliner.domain.user.dto.response.UserInfoResponse;
 import kr.kro.photoliner.domain.user.service.UserService;
+import kr.kro.photoliner.global.auth.Auth;
+import kr.kro.photoliner.global.kakao.login.service.KakaoAuthService;
 import lombok.RequiredArgsConstructor;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
 import org.springframework.web.bind.annotation.RestController;
 
 @RestController
 @RequiredArgsConstructor
+@RequestMapping("/api/v1/users")
 public class UserController {
 
     private final UserService userService;
+    private final KakaoAuthService kakaoAuthService;
+    private static final String LOGIN_REDIRECT_URL = "http://localhost:5173/login/kakao";
+
+    @GetMapping("/login/kakao")
+    public ResponseEntity<JwtResponse> login(@RequestParam(value = "code") String authorizationCode) {
+        JwtResponse jwtResponse = userService.oAuthLogin(authorizationCode);
+
+        String redirectUrl = LOGIN_REDIRECT_URL + "#accessToken=" + jwtResponse.accessToken();
+
+        return ResponseEntity
+                .status(HttpStatus.FOUND)
+                .location(URI.create(redirectUrl))
+                .build();
+    }
+
+    @GetMapping("/login/kakao/authorization")
+    public ResponseEntity<Void> authorize() {
+        return ResponseEntity
+                .status(HttpStatus.FOUND)
+                .location(URI.create(kakaoAuthService.getAuthorizationRedirectUrl()))
+                .build();
+    }
+
+    @GetMapping("/info")
+    public ResponseEntity<UserInfoResponse> getUserInfo(
+            @Auth Long userId
+    ) {
+        return ResponseEntity.ok(userService.getUserInfo(userId));
+    }
 }