YAPP-Github · sectionr0 · Jul 13, 2024 · Jul 11, 2024 · Jul 11, 2024 · Jul 11, 2024
diff --git a/app/src/main/kotlin/com/wespot/ApiApplication.kt b/app/src/main/kotlin/com/wespot/ApiApplication.kt
@@ -5,8 +5,6 @@ import org.springframework.boot.runApplication
 import org.springframework.cloud.openfeign.EnableFeignClients
 import org.springframework.data.jpa.repository.config.EnableJpaAuditing
 
-@EnableJpaAuditing
-@EnableFeignClients
 @SpringBootApplication(scanBasePackages = ["com.wespot"])
 class ApiApplication
 

diff --git a/app/src/main/kotlin/com/wespot/config/JpaAuditingConfig.kt b/app/src/main/kotlin/com/wespot/config/JpaAuditingConfig.kt
@@ -0,0 +1,9 @@
+package com.wespot.config
+
+import org.springframework.context.annotation.Configuration
+import org.springframework.data.jpa.repository.config.EnableJpaAuditing
+
+@Configuration
+@EnableJpaAuditing
+class JpaAuditingConfig {
+}
diff --git a/app/src/main/kotlin/com/wespot/config/OpenFeignConfig.kt b/app/src/main/kotlin/com/wespot/config/OpenFeignConfig.kt
@@ -0,0 +1,32 @@
+package com.wespot.config
+
+import com.wespot.error.CustomErrorDecoder
+import feign.codec.ErrorDecoder
+import org.springframework.boot.web.client.RestTemplateBuilder
+import org.springframework.cloud.openfeign.EnableFeignClients
+import org.springframework.context.annotation.Bean
+import org.springframework.context.annotation.Configuration
+import org.springframework.http.converter.HttpMessageConverter
+import org.springframework.http.converter.json.MappingJackson2HttpMessageConverter
+import org.springframework.web.client.RestTemplate
+
+
+@Configuration
+@EnableFeignClients(basePackages = ["com.wespot"])
+class OpenFeignConfig {
+
+    @Bean
+    fun errorDecoder(): ErrorDecoder {
+        return CustomErrorDecoder()
+    }
+
+    @Bean
+    fun feignMessageConverter(): MappingJackson2HttpMessageConverter {
+        return MappingJackson2HttpMessageConverter()
+    }
+
+    @Bean
+    fun restTemplate(messageConverters: List<HttpMessageConverter<*>>): RestTemplate {
+        return RestTemplateBuilder().additionalMessageConverters(messageConverters).build()
+    }
+}
diff --git a/build.gradle.kts b/build.gradle.kts
@@ -31,16 +31,15 @@ allprojects {
 	}
 }
 
-repositories {
-	mavenCentral()
-}
 
 subprojects {
 	apply(plugin = "java")
 
 	apply(plugin = "kotlin")
 	apply(plugin = "kotlin-spring")
 	apply(plugin = "kotlin-kapt")
+	apply(plugin = "kotlin-noarg")
+	apply(plugin = "kotlin-jpa")
 
 	apply(plugin = "org.springframework.boot")
 	apply(plugin = "io.spring.dependency-management")
@@ -55,6 +54,9 @@ subprojects {
 		implementation("com.fasterxml.jackson.module:jackson-module-kotlin")
 		implementation("mysql:mysql-connector-java:8.0.32")
 
+		// https://mvnrepository.com/artifact/org.bouncycastle/bcpkix-jdk15on
+		implementation("org.bouncycastle:bcpkix-jdk15on:1.69")
+
 		testImplementation("org.springframework.boot:spring-boot-starter-test")
 		testImplementation("org.jetbrains.kotlin:kotlin-test-junit5")
 		testRuntimeOnly("org.junit.platform:junit-platform-launcher")

diff --git a/common/src/main/kotlin/com/wespot/error/CustomErrorDecoder.kt b/common/src/main/kotlin/com/wespot/error/CustomErrorDecoder.kt
@@ -0,0 +1,17 @@
+package com.wespot.error
+
+import feign.Response
+import feign.codec.ErrorDecoder
+import java.util.NoSuchElementException
+
+class CustomErrorDecoder : ErrorDecoder {
+    override fun decode(methodKey: String, response: Response): Exception {
+        return when (response.status()) {
+            400 -> IllegalArgumentException("Bad request from OAuth")
+            401 -> IllegalArgumentException("OAuth Authentication failed")
+            404 -> NoSuchElementException("Resource not found from OAuth")
+            500 -> RuntimeException("Internal server error from OAuth")
+            else -> RuntimeException("Unknown error occurred from OAuth")
+        }
+    }
+}
diff --git a/core/build.gradle.kts b/core/build.gradle.kts
@@ -2,9 +2,20 @@ import org.springframework.boot.gradle.tasks.bundling.BootJar
 
 dependencies {
 
+    // https://mvnrepository.com/artifact/io.jsonwebtoken/jjwt-api
+    implementation("io.jsonwebtoken:jjwt-api:0.11.2")
+    implementation("io.jsonwebtoken:jjwt-impl:0.11.2")
+    implementation("io.jsonwebtoken:jjwt-jackson:0.11.2")
+
+    // Test dependencies
+    testImplementation("org.springframework.boot:spring-boot-starter-test")
+    testImplementation("io.kotest:kotest-runner-junit5:5.8.0")
+    testImplementation("io.kotest:kotest-assertions-core:5.8.0")
+    testImplementation("io.kotest:kotest-property:5.8.0")
+    testImplementation("io.mockk:mockk:1.13.7")
+
     implementation(project(":common"))
     implementation(project(":domain"))
-    implementation(project(":infrastructure:mysql"))
 }
 
 tasks.named<Jar>("jar") {

diff --git a/core/src/main/kotlin/com/wespot/auth/dto/AuthLoginRequest.kt b/core/src/main/kotlin/com/wespot/auth/dto/AuthLoginRequest.kt
@@ -0,0 +1,10 @@
+package com.wespot.auth.dto
+
+import com.wespot.user.SocialType
+
+data class AuthLoginRequest(
+    val socialType: SocialType,
+    val authorizationCode: String?,
+    val identityToken: String?,
+    val fcmToken: String?
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/OAuthIdAndRefreshToken.kt b/core/src/main/kotlin/com/wespot/auth/dto/OAuthIdAndRefreshToken.kt
@@ -0,0 +1,6 @@
+package com.wespot.auth.dto
+
+data class OAuthIdAndRefreshToken(
+    val oAuthId: String,
+    val refreshToken: String
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/apple/ApplePublicKeysResult.kt b/core/src/main/kotlin/com/wespot/auth/dto/apple/ApplePublicKeysResult.kt
@@ -0,0 +1,24 @@
+package com.wespot.auth.dto.apple
+
+/**
+ * https://developer.apple.com/documentation/sign_in_with_apple/fetch_apple_s_public_key_for_verifying_token_signature 참고
+ */
+data class ApplePublicKeysResult(
+    // 공개키 목록
+    val keys: List<ApplePublicKey>
+) {
+    fun getMatchesKey(alg: String?, kid: String?): ApplePublicKey {
+        return keys
+            .firstOrNull { k -> k.alg == alg && k.kid == kid }
+            ?: throw IllegalArgumentException("Apple JWT 값의 alg, kid 정보가 올바르지 않습니다.")
+    }
+}
+
+data class ApplePublicKey(
+    val kty: String,
+    val kid: String,
+    val use: String,
+    val alg: String,
+    val n: String,
+    val e: String
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleRevokeRequest.kt b/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleRevokeRequest.kt
@@ -0,0 +1,16 @@
+package com.wespot.auth.dto.apple
+
+import com.fasterxml.jackson.annotation.JsonProperty
+
+/**
+ * https://developer.apple.com/documentation/sign_in_with_apple/revoke_tokens
+ */
+data class AppleRevokeRequest(
+    @JsonProperty("client_id")
+    val clientId: String,
+    @JsonProperty("client_secret")
+    val clientSecret: String,
+    val token: String,
+    @JsonProperty("token_type_hint")
+    val tokenTypeHint: String
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleTokenRequest.kt b/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleTokenRequest.kt
@@ -0,0 +1,18 @@
+package com.wespot.auth.dto.apple
+
+import com.fasterxml.jackson.annotation.JsonProperty
+
+/**
+ * https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens 참고
+ */
+data class AppleTokenRequest(
+    @JsonProperty("client_id")
+    val clientId: String,
+    @JsonProperty("client_secret")
+    val clientSecret: String,
+    val code: String?,
+    @JsonProperty("grant_type")
+    val grantType: String,
+    @JsonProperty("redirect_uri")
+    val redirectUri: String?
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleTokenResult.kt b/core/src/main/kotlin/com/wespot/auth/dto/apple/AppleTokenResult.kt
@@ -0,0 +1,20 @@
+package com.wespot.auth.dto.apple
+
+import com.fasterxml.jackson.annotation.JsonProperty
+
+/**
+ * https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens 참고
+ */
+data class AppleTokenResult(
+    @JsonProperty("access_token")
+    val accessToken: String,
+    @JsonProperty("token_type")
+    val tokenType: String,
+    @JsonProperty("expires_in")
+    val expiresIn: Int,
+    @JsonProperty("refresh_token")
+    val refreshToken: String?,
+    @JsonProperty("id_token")
+    val idToken: String,
+    val error: String?,
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoRevokeResult.kt b/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoRevokeResult.kt
@@ -0,0 +1,5 @@
+package com.wespot.auth.dto.kakao
+
+data class KakaoRevokeResult(
+    val id : Long,
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoTokenRequest.kt b/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoTokenRequest.kt
@@ -0,0 +1,16 @@
+package com.wespot.auth.dto.kakao
+
+import com.fasterxml.jackson.annotation.JsonProperty
+
+/**
+ * https://developers.kakao.com/docs/latest/ko/kakaologin/rest-api#request-token-request-body 참고
+ */
+data class KakaoTokenRequest(
+    @JsonProperty("grant_type")
+    val grantType: String,
+    @JsonProperty("client_id")
+    val clientId: String,
+    @JsonProperty("redirect_uri")
+    val redirectUri: String,
+    val code: String,
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoTokenResult.kt b/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoTokenResult.kt
@@ -0,0 +1,17 @@
+package com.wespot.auth.dto.kakao
+
+import com.fasterxml.jackson.annotation.JsonProperty
+
+/**
+ * https://developers.kakao.com/docs/latest/ko/kakaologin/rest-api#request-token-response 참고
+ */
+data class KakaoTokenResult(
+    @JsonProperty("access_token")
+    val accessToken: String,
+    @JsonProperty("token_type")
+    val tokenType: String,
+    @JsonProperty("refresh_token")
+    val refreshToken: String?,
+    @JsonProperty("refresh_token_expires_in")
+    val refreshTokenExpiresIn: String?,
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoUserInfoResult.kt b/core/src/main/kotlin/com/wespot/auth/dto/kakao/KakaoUserInfoResult.kt
@@ -0,0 +1,9 @@
+package com.wespot.auth.dto.kakao
+
+/**
+ * https://developers.kakao.com/docs/latest/ko/kakaologin/rest-api#req-user-info-response 참고
+ */
+data class KakaoUserInfoResult(
+    val id: Long,
+    val connected_at: String,
+)
diff --git a/core/src/main/kotlin/com/wespot/auth/service/SocialAuthService.kt b/core/src/main/kotlin/com/wespot/auth/service/SocialAuthService.kt
@@ -0,0 +1,11 @@
+package com.wespot.auth.service
+
+import com.wespot.auth.dto.AuthLoginRequest
+import com.wespot.auth.dto.OAuthIdAndRefreshToken
+import com.wespot.user.SocialType
+
+interface SocialAuthService {
+    fun fetchAuthToken(authLoginRequest: AuthLoginRequest): OAuthIdAndRefreshToken
+    fun isSupport(socialType: SocialType): Boolean
+    fun revoke(socialId: String, socialRefreshToken: String?): Boolean
+}
diff --git a/core/src/main/kotlin/com/wespot/auth/service/SocialAuthServiceFactory.kt b/core/src/main/kotlin/com/wespot/auth/service/SocialAuthServiceFactory.kt
@@ -0,0 +1,14 @@
+package com.wespot.auth.service
+
+import com.wespot.user.SocialType
+import org.springframework.stereotype.Component
+
+@Component
+class SocialAuthServiceFactory(
+    private val services: List<SocialAuthService>
+) {
+    fun getService(socialType: SocialType): SocialAuthService {
+        return services.find { it.isSupport(socialType) }
+            ?: throw IllegalArgumentException("Unsupported social type: $socialType")
+    }
+}
diff --git a/core/src/main/kotlin/com/wespot/auth/service/SocialHeaderConfiguration.kt b/core/src/main/kotlin/com/wespot/auth/service/SocialHeaderConfiguration.kt
@@ -0,0 +1,28 @@
+package com.wespot.auth.service
+
+import feign.Logger
+import feign.RequestInterceptor
+import feign.RequestTemplate
+import org.springframework.context.annotation.Bean
+import org.springframework.http.MediaType
+
+class SocialHeaderConfiguration {
+    companion object {
+        private const val CONTENT_TYPE_HEADER = "Content-Type"
+    }
+
+    @Bean
+    fun requestInterceptor(): RequestInterceptor {
+        return RequestInterceptor { template: RequestTemplate ->
+            template.header(
+                CONTENT_TYPE_HEADER,
+                MediaType.APPLICATION_FORM_URLENCODED_VALUE
+            )
+        }
+    }
+
+    @Bean
+    fun feignLoggerLevel(): Logger.Level {
+        return Logger.Level.FULL
+    }
+}
diff --git a/core/src/main/kotlin/com/wespot/auth/service/apple/AppleClient.kt b/core/src/main/kotlin/com/wespot/auth/service/apple/AppleClient.kt
@@ -0,0 +1,46 @@
+package com.wespot.auth.service.apple
+
+import com.wespot.auth.dto.apple.ApplePublicKeysResult
+import com.wespot.auth.dto.apple.AppleRevokeRequest
+import com.wespot.auth.dto.apple.AppleTokenResult
+import com.wespot.auth.service.SocialHeaderConfiguration
+import feign.Response
+import org.springframework.cloud.openfeign.FeignClient
+import org.springframework.http.MediaType
+import org.springframework.web.bind.annotation.GetMapping
+import org.springframework.web.bind.annotation.PostMapping
+import org.springframework.web.bind.annotation.RequestBody
+import org.springframework.web.bind.annotation.RequestParam
+
+@FeignClient(name = "apple", url = "https://appleid.apple.com/auth", configuration = [SocialHeaderConfiguration::class])
+interface AppleClient {
+
+    /**
+     * Apple 공개키 가져오기
+     * https://appleid.apple.com/auth/keys
+     */
+    @GetMapping("/keys")
+    fun getApplePublicKeys(): ApplePublicKeysResult
+
+    /**
+     * Apple get Token
+     * https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens
+     */
+    @PostMapping("/token", produces = [MediaType.APPLICATION_FORM_URLENCODED_VALUE])
+    fun getToken(
+        @RequestParam("client_id") clientId: String,
+        @RequestParam("client_secret") clientSecret: String,
+        @RequestParam("code") code: String,
+        @RequestParam("grant_type") grantType: String,
+        @RequestParam("redirect_uri") redirectUri: String,
+    ): AppleTokenResult
+
+    /**
+     * Apple revoke Token
+     * https://developer.apple.com/documentation/sign_in_with_apple/revoking_tokens
+     */
+    @PostMapping("/revoke", produces = [MediaType.APPLICATION_FORM_URLENCODED_VALUE])
+    fun revoke(
+        @RequestBody appleRevokeRequest: AppleRevokeRequest
+    ): Response
+}