Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/member #1

Merged
merged 10 commits into from
Aug 26, 2024
Merged

Feature/member #1

Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
a81fbcf
MSA를 위해 멀티모듈 환경으로 구조 변경
plere Aug 15, 2024
4681f02
회원가입 중 멤버 생성 기능 개발
plere Aug 15, 2024
4929524
핸드폰번호가 중복될 경우 409 응답 처리
plere Aug 15, 2024
f01bae9
로그인 기능 개발
plere Aug 18, 2024
c731216
로그아웃 기능 개발
plere Aug 19, 2024
4e23bb1
코드리뷰 사항 반영(Exception 관련 Class명을 ~Exception으로 수정)
plere Aug 24, 2024
114c3e0
class명 오타 수정
plere Aug 24, 2024
54dfe3b
회원의 비밀번호 암호화에 salt를 이용해서 암호화하도록 변경
plere Aug 24, 2024
69f4a7f
서버 응답값 구조를 객체로 관리하도록 수정
plere Aug 25, 2024
c073c4d
error 발생시 stackTrace를 logger를 통하도록 수정
plere Aug 25, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
53 changes: 40 additions & 13 deletions build.gradle
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,25 +4,52 @@ plugins {
id 'io.spring.dependency-management' version '1.1.6'
}

group = 'co.kr.ticketing'
version = '0.0.1-SNAPSHOT'
allprojects {
apply plugin: 'java'
apply plugin: 'org.springframework.boot'
apply plugin: 'io.spring.dependency-management'

java {
toolchain {
languageVersion = JavaLanguageVersion.of(17)
group = 'co.kr.ticketing'
version = '0.0.1-SNAPSHOT'

sourceCompatibility = '17'

configurations {
compileOnly {
extendsFrom annotationProcessor
}
}
}

repositories {
mavenCentral()
}
dependencies {
implementation 'org.springframework.boot:spring-boot-starter'
implementation 'org.springframework.boot:spring-boot-starter-web'

dependencies {
implementation 'org.springframework.boot:spring-boot-starter-web'
testImplementation 'org.springframework.boot:spring-boot-starter-test'
testRuntimeOnly 'org.junit.platform:junit-platform-launcher'
compileOnly 'org.projectlombok:lombok'
annotationProcessor 'org.projectlombok:lombok'
annotationProcessor 'org.springframework.boot:spring-boot-configuration-processor'

testImplementation 'org.springframework.boot:spring-boot-starter-test'
testRuntimeOnly 'org.junit.platform:junit-platform-launcher'
}

repositories {
mavenCentral()
}
}

tasks.named('test') {
useJUnitPlatform()
}


jar {
enabled = false
}

bootJar {
enabled = false
}

build {
enabled = false
}
28 changes: 28 additions & 0 deletions member/build.gradle
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
dependencies {
// database
implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
implementation 'com.mysql:mysql-connector-j'

//encryption
implementation 'com.google.guava:guava:31.1-jre'

// validator
implementation 'org.springframework.boot:spring-boot-starter-validation'

//jwt
implementation 'io.jsonwebtoken:jjwt:0.9.1'
implementation 'com.sun.xml.bind:jaxb-impl:4.0.1'
implementation 'com.sun.xml.bind:jaxb-core:4.0.1'
implementation 'javax.xml.bind:jaxb-api:2.4.0-b180830.0359'
}

bootJar {
archivesBaseName = 'Admin'
archiveFileName = 'admin.jar'
destinationDirectory = file(project.rootProject.projectDir)
enabled = true
}

jar {
enabled = false
}
15 changes: 15 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/MemberApplication.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,15 @@
package co.kr.ticketing.member;

import org.springframework.boot.SpringApplication;
import org.springframework.boot.autoconfigure.SpringBootApplication;
import org.springframework.data.jpa.repository.config.EnableJpaAuditing;

@EnableJpaAuditing
@SpringBootApplication
public class MemberApplication {

public static void main(String[] args) {
SpringApplication.run(MemberApplication.class, args);
}

}
47 changes: 47 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/auth/aop/AuthAspect.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,47 @@
package co.kr.ticketing.member.auth.aop;

import java.util.Arrays;

import org.aspectj.lang.JoinPoint;
import org.aspectj.lang.annotation.Aspect;
import org.aspectj.lang.annotation.Before;
import org.springframework.stereotype.Component;
import org.springframework.web.context.request.RequestContextHolder;
import org.springframework.web.context.request.ServletRequestAttributes;

import co.kr.ticketing.member.auth.config.AuthConfig;
import co.kr.ticketing.member.auth.util.TokenUtil;
import co.kr.ticketing.member.exception.UnAuthorized;
import jakarta.servlet.http.Cookie;
import lombok.AccessLevel;
import lombok.RequiredArgsConstructor;
import lombok.experimental.FieldDefaults;
import lombok.extern.slf4j.Slf4j;

@Slf4j
@Aspect
@Component
@RequiredArgsConstructor
@FieldDefaults(level = AccessLevel.PRIVATE, makeFinal = true)
public class AuthAspect {
TokenUtil tokenUtil;

@Before("@annotation(LoginCheck)")
public void loginCheck(JoinPoint jp) {
String token = getToken();
if (!tokenUtil.isValidToken(token)) {
throw new UnAuthorized();
}
}

private String getToken() {
Cookie[] cookies = ((ServletRequestAttributes)(RequestContextHolder.currentRequestAttributes())).getRequest()
.getCookies();

return cookies == null ? "" : Arrays.stream(cookies)
.filter(cookie -> cookie.getName().equals(AuthConfig.LOGIN_COOKIE_NAME))
.findAny()
.orElseThrow(UnAuthorized::new)
.getValue();
}
}
11 changes: 11 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/auth/aop/LoginCheck.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
package co.kr.ticketing.member.auth.aop;

import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;

@Target(ElementType.METHOD)
@Retention(RetentionPolicy.RUNTIME)
public @interface LoginCheck {
}
11 changes: 11 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/auth/config/AuthConfig.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
package co.kr.ticketing.member.auth.config;

import lombok.experimental.UtilityClass;

@UtilityClass
public class AuthConfig {
public static String SECRET_KEY = "test_secret_key";
public static String PHONE_NUMBER = "phoneNumber";
public static int TOKEN_VALID_TIME = 86400;
public static String LOGIN_COOKIE_NAME = "token";
}
76 changes: 76 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/auth/util/JwtUtil.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,76 @@
package co.kr.ticketing.member.auth.util;

import java.time.LocalDateTime;
import java.time.ZoneId;
import java.time.ZonedDateTime;
import java.util.Date;
import java.util.HashMap;
import java.util.Map;

import org.springframework.stereotype.Component;

import co.kr.ticketing.member.auth.config.AuthConfig;
import io.jsonwebtoken.JwtException;
import io.jsonwebtoken.Jwts;
import io.jsonwebtoken.SignatureAlgorithm;
import lombok.AccessLevel;
import lombok.RequiredArgsConstructor;
import lombok.experimental.FieldDefaults;

@Component
@RequiredArgsConstructor
@FieldDefaults(level = AccessLevel.PRIVATE, makeFinal = true)
public class JwtUtil {

public String generateJwt(Map<String, Object> valueMap, int expireSeconds) {
return generateToken(valueMap, expireSeconds, AuthConfig.SECRET_KEY);
}

public boolean isValidJwt(String jwt) {
if (jwt.isEmpty()) {
return false;
}

try {
Jwts.parser()
.setSigningKey(AuthConfig.SECRET_KEY.getBytes())
.parseClaimsJws(jwt)
.getBody();
} catch (JwtException e) {
return false;
}

return true;
}

private String generateToken(Map<String, Object> valueMap, int expireSeconds, String secretKey) {
Map<String, Object> headers = new HashMap<>();
headers.put("typ", "JWT");
headers.put("alg", "HS256");

Map<String, Object> payload = new HashMap<>();
payload.putAll(valueMap);

return Jwts.builder()
.setHeader(headers)
.setClaims(payload)
.setIssuedAt(
Date.from(
ZonedDateTime.now().toInstant()
))
.setExpiration(
getDate(expireSeconds)
)
.signWith(SignatureAlgorithm.HS256, secretKey.getBytes()).compact();
}

private Date getDate(int seconds) {
LocalDateTime localDateTime = LocalDateTime.now().plusSeconds(seconds);
return Date.from(
localDateTime.atZone(
ZoneId.systemDefault()
)
.toInstant()
);
}
}
30 changes: 30 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/auth/util/TokenUtil.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,30 @@
package co.kr.ticketing.member.auth.util;

import java.util.Map;

import org.springframework.stereotype.Component;

import co.kr.ticketing.member.auth.config.AuthConfig;
import co.kr.ticketing.member.domain.model.Member;
import lombok.AccessLevel;
import lombok.RequiredArgsConstructor;
import lombok.experimental.FieldDefaults;

@Component
@RequiredArgsConstructor(access = AccessLevel.PROTECTED)
@FieldDefaults(level = AccessLevel.PRIVATE, makeFinal = true)
public class TokenUtil {
JwtUtil jwtUtil;

public String generateToken(Member member) {
Map<String, Object> payload = Map.of(
AuthConfig.PHONE_NUMBER, member.getPhoneNumber()
);

return jwtUtil.generateJwt(payload, AuthConfig.TOKEN_VALID_TIME);
}

public boolean isValidToken(String token) {
return jwtUtil.isValidJwt(token);
}
}
82 changes: 82 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/controller/MemberController.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,82 @@
package co.kr.ticketing.member.controller;

import org.springframework.http.ResponseCookie;
import org.springframework.validation.annotation.Validated;
import org.springframework.web.bind.annotation.PostMapping;
import org.springframework.web.bind.annotation.RequestBody;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

import co.kr.ticketing.member.auth.aop.LoginCheck;
import co.kr.ticketing.member.auth.config.AuthConfig;
import co.kr.ticketing.member.auth.util.TokenUtil;
import co.kr.ticketing.member.controller.request.LoginRequest;
import co.kr.ticketing.member.controller.request.SignUpRequest;
import co.kr.ticketing.member.domain.model.Member;
import co.kr.ticketing.member.usecase.LoginUseCase;
import co.kr.ticketing.member.usecase.SignUpUseCase;
import co.kr.ticketing.member.util.CookieUtil;
import co.kr.ticketing.member.util.dto.CookieDto;
import jakarta.servlet.http.HttpServletResponse;
import jakarta.validation.Valid;
import lombok.AccessLevel;
import lombok.RequiredArgsConstructor;
import lombok.experimental.FieldDefaults;

@Validated
@RestController
@RequestMapping(value = "/members")
@RequiredArgsConstructor
@FieldDefaults(level = AccessLevel.PRIVATE, makeFinal = true)
public class MemberController {
CookieUtil cookieUtil;
TokenUtil tokenUtil;
SignUpUseCase signupUseCase;
LoginUseCase loginUseCase;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

UseCase 가 직관적인 네이밍은 아닌거 같습니다.
계층 구조를 만들고자 한다면 Processor 나 Application 이 좋을 것 같습니다.
판단해주시면 좋을 것 같습니다.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

이 부분은 일단 UseCase로 유지해서 사용해보도록 하겠습니다


@PostMapping
public void SignUp(@RequestBody @Valid SignUpRequest request) {
signupUseCase.execute(request);
}

@PostMapping("/login")
public void Login(@RequestBody @Valid LoginRequest request, HttpServletResponse response) {
Member member = loginUseCase.execute(request);

ResponseCookie responseCookie = createLoginTokenCookie(member);

response.addHeader("Set-Cookie", responseCookie.toString());
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

응답이 200 으로만 나가는게 확장성이 떨어져보입니다.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

void 로 주는 부분들 전체 포함입니다.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ResponseDto를 사용해서 반환하도록 수정했습니다!

}

@LoginCheck
@PostMapping("/logout")
public void Logout(HttpServletResponse response) {
ResponseCookie responseCookie = invalidLoginTokenCookie();

response.addHeader("Set-Cookie", responseCookie.toString());
}

private ResponseCookie createLoginTokenCookie(Member member) {
String loginToken = tokenUtil.generateToken(member);

return cookieUtil.createTokenCookie(CookieDto.builder()
.name(AuthConfig.LOGIN_COOKIE_NAME)
.value(loginToken)
.isEncode(true)
.httpOnly(true)
.maxAge(AuthConfig.TOKEN_VALID_TIME)
.build()
);
}

private ResponseCookie invalidLoginTokenCookie() {
return cookieUtil.createTokenCookie(CookieDto.builder()
.name(AuthConfig.LOGIN_COOKIE_NAME)
.value(null)
.isEncode(false)
.httpOnly(true)
.maxAge(0)
.build()
);
}
}
11 changes: 11 additions & 0 deletions member/src/main/java/co/kr/ticketing/member/controller/request/LoginRequest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,11 @@
package co.kr.ticketing.member.controller.request;

import jakarta.validation.constraints.NotBlank;

public record LoginRequest(
@NotBlank
String phoneNumber,
@NotBlank
String password
) {
}
Loading
Loading