Feat/#13 회원가입 구현 + 인증 흐름 정리

build.gradle

@@ -41,7 +41,9 @@ dependencies {
     testImplementation 'org.springframework.boot:spring-boot-starter-test'
     testRuntimeOnly 'org.junit.platform:junit-platform-launcher'    
     implementation 'org.springframework.boot:spring-boot-starter-actuator'
-
+    implementation 'org.springframework.boot:spring-boot-starter-security'  
+    testImplementation 'org.springframework.security:spring-security-test'
+
     //Feign
     implementation("org.springframework.cloud:spring-cloud-starter-openfeign")
 

src/docs/asciidoc/auth.adoc

@@ -3,73 +3,149 @@
 :toclevels: 2
 :sectlinks:
 
-[[resources-post]]
+[[resources-auth]]
 == Authentication
 
-[[resources-post-create]]
-=== 로그인 시도
 
-==== HTTP request
+[[resources-auth-kakao]]
+=== 카카오 로그인
+
+==== 로그인 성공
+
+===== HTTP request
+include::{snippets}/kakao-login-success/http-request.adoc[]
+
+===== request-body 설명
+include::{snippets}/kakao-login-success/request-fields.adoc[]
+
+===== HTTP response
+include::{snippets}/kakao-login-success/http-response.adoc[]
+
+===== response-body 설명
+include::{snippets}/kakao-login-success/response-fields.adoc[]
+
+==== 회원가입 필요
+
+===== HTTP request
+include::{snippets}/kakao-login-need-signup/http-request.adoc[]
+
+===== request-body 설명
+include::{snippets}/kakao-login-need-signup/request-fields.adoc[]
+
+===== HTTP response
+include::{snippets}/kakao-login-need-signup/http-response.adoc[]
+
+===== response-body 설명
+include::{snippets}/kakao-login-need-signup/response-fields.adoc[]
+
+
+[[resources-auth-apple]]
+=== 애플 로그인
+
+==== 로그인 성공
+
+===== HTTP request
+include::{snippets}/apple-login-success/http-request.adoc[]
+
+===== request-body 설명
+include::{snippets}/apple-login-success/request-fields.adoc[]
+
+===== HTTP response
+include::{snippets}/apple-login-success/http-response.adoc[]
+
+===== response-body 설명
+include::{snippets}/apple-login-success/response-fields.adoc[]
+
+==== 회원가입 필요
+
+===== HTTP request
+include::{snippets}/apple-login-need-signup/http-request.adoc[]
+
+===== request-body 설명
+include::{snippets}/apple-login-need-signup/request-fields.adoc[]
+
+===== HTTP response
+include::{snippets}/apple-login-need-signup/http-response.adoc[]
 
-include::{snippets}/auth-login/http-request.adoc[]
+===== response-body 설명
+include::{snippets}/apple-login-need-signup/response-fields.adoc[]
+
+==== 토큰 파싱 실패
+
+===== HTTP request
+include::{snippets}/apple-login-token-parse-failed/http-request.adoc[]
+
+===== HTTP response
+include::{snippets}/apple-login-token-parse-failed/http-response.adoc[]
+
+[[resources-auth-signup]]
+=== 회원가입
+
+==== HTTP request
+include::{snippets}/signup-success/http-request.adoc[]
 
 ==== request-body 설명
-include::{snippets}/auth-login/request-fields.adoc[]
+include::{snippets}/signup-success/request-fields.adoc[]
 
 ==== HTTP response
-
-include::{snippets}/auth-login/http-response.adoc[]
+include::{snippets}/signup-success/http-response.adoc[]
 
 ==== response-body 설명
-include::{snippets}/auth-login/response-fields.adoc[]
+include::{snippets}/signup-success/response-fields.adoc[]
+
+=== 회원가입 중복 실패
+
+==== HTTP request
+include::{snippets}/signup-already-registered/http-request.adoc[]
+
+==== request-body 설명
+include::{snippets}/signup-already-registered/request-fields.adoc[]
+
+==== HTTP response
+include::{snippets}/signup-already-registered/http-response.adoc[]
 
 
 
+[[resources-auth-logout]]
 === 로그아웃
 
 ==== HTTP request
-
 include::{snippets}/auth-logout/http-request.adoc[]
 
 ==== request-body 설명
 include::{snippets}/auth-logout/request-fields.adoc[]
 
 ==== HTTP response
-
 include::{snippets}/auth-logout/http-response.adoc[]
 
 
-
-
-=== 토큰재발급
+[[resources-auth-reissue]]
+=== 토큰 재발급
 
 ==== HTTP request
-
 include::{snippets}/auth-reissue/http-request.adoc[]
 
 ==== request-body 설명
 include::{snippets}/auth-reissue/request-fields.adoc[]
 
 ==== HTTP response
-
 include::{snippets}/auth-reissue/http-response.adoc[]
 
 ==== response-body 설명
 include::{snippets}/auth-reissue/response-fields.adoc[]
 
 
+[[resources-auth-withdraw]]
 === 회원탈퇴
 
 ==== HTTP request
-
 include::{snippets}/auth-withdraw/http-request.adoc[]
 
 ==== request-header 설명
 include::{snippets}/auth-withdraw/request-headers.adoc[]
 
 ==== HTTP response
-
 include::{snippets}/auth-withdraw/http-response.adoc[]
 
 ==== response-body 설명
-include::{snippets}/auth-withdraw/response-fields.adoc[]
+include::{snippets}/auth-withdraw/response-fields.adoc[]

src/main/java/com/example/matzipbookserver/global/config/SecurityConfig.java

@@ -0,0 +1,43 @@
+package com.example.matzipbookserver.global.config;
+
+import com.example.matzipbookserver.global.jwt.JwtAuthenticationFilter;
+import com.example.matzipbookserver.global.jwt.JwtTokenProvider;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.authentication.AuthenticationManager;
+import org.springframework.security.config.annotation.authentication.configuration.AuthenticationConfiguration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.http.SessionCreationPolicy;
+import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+
+
+@Configuration
+@RequiredArgsConstructor
+public class SecurityConfig {
+    private final JwtTokenProvider jwtTokenProvider;
+
+    @Bean
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+        http
+                .csrf(csrf -> csrf.disable())
+                .formLogin(form -> form.disable())
+                .httpBasic(httpBasic -> httpBasic.disable())
+                .sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
+                .authorizeHttpRequests(auth -> auth
+                        .requestMatchers("/api/auth/**", "/api/signup").permitAll()
+                        .anyRequest().authenticated()
+                )
+                .headers(headers -> headers.frameOptions(frame -> frame.sameOrigin()))
+                .addFilterBefore(new JwtAuthenticationFilter(jwtTokenProvider), UsernamePasswordAuthenticationFilter.class);
+
+        return http.build();
+    }
+
+
+    @Bean
+    public AuthenticationManager authenticationManager(AuthenticationConfiguration configuration) throws Exception {
+        return configuration.getAuthenticationManager();
+    }
+}

src/main/java/com/example/matzipbookserver/global/config/WebMvcConfig.java

@@ -0,0 +1,21 @@
+package com.example.matzipbookserver.global.config;
+
+import com.example.matzipbookserver.global.resolver.CurrentMemberArgumentResolver;
+import lombok.RequiredArgsConstructor;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+import java.util.List;
+
+@Configuration
+@RequiredArgsConstructor
+public class WebMvcConfig implements WebMvcConfigurer {
+
+    private final CurrentMemberArgumentResolver currentMemberArgumentResolver;
+
+    @Override
+    public void addArgumentResolvers(List<HandlerMethodArgumentResolver> resolvers) {
+        resolvers.add(currentMemberArgumentResolver);
+    }
+}

src/main/java/com/example/matzipbookserver/global/jwt/JwtAuthenticationFilter.java

@@ -0,0 +1,38 @@
+package com.example.matzipbookserver.global.jwt;
+
+import com.example.matzipbookserver.member.domain.Member;
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.web.filter.OncePerRequestFilter;
+
+import java.io.IOException;
+import java.util.List;
+
+@RequiredArgsConstructor
+public class JwtAuthenticationFilter extends OncePerRequestFilter {
+    private final JwtTokenProvider jwtTokenProvider;
+
+    @Override
+    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
+        throws ServletException, IOException {
+        String token = jwtTokenProvider.resolveToken(request);
+        if (token != null && jwtTokenProvider.validateToken(token)) {
+            Member member = jwtTokenProvider.getMemberFromToken(token);
+
+            UsernamePasswordAuthenticationToken authentication =
+                    new UsernamePasswordAuthenticationToken(member, null, List.of(new SimpleGrantedAuthority("ROLE_USER")));
+
+
+            SecurityContextHolder.getContext().setAuthentication(authentication);
+
+
+        }
+        filterChain.doFilter(request, response);
+    }
+}

src/main/java/com/example/matzipbookserver/global/jwt/JwtTokenProvider.java

@@ -0,0 +1,86 @@
+package com.example.matzipbookserver.global.jwt;
+
+import com.example.matzipbookserver.global.exception.RestApiException;
+import com.example.matzipbookserver.global.response.error.AuthErrorCode;
+import com.example.matzipbookserver.global.response.error.MemberErrorCode;
+import com.example.matzipbookserver.member.domain.Member;
+import com.example.matzipbookserver.member.repository.MemberRepository;
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.security.Keys;
+import jakarta.annotation.PostConstruct;
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+
+import javax.crypto.SecretKey;
+import java.util.Base64;
+import java.util.Date;
+
+@Component
+public class JwtTokenProvider {
+    private final MemberRepository memberRepository;
+    @Value("${jwt.secret}")
+    private String secret;
+
+    private SecretKey secretKey;
+
+    public JwtTokenProvider(MemberRepository memberRepository) {
+        this.memberRepository = memberRepository;
+    }
+
+    @PostConstruct
+    public void init() {
+        byte[] decodedKey = Base64.getDecoder().decode(secret);
+        this.secretKey = Keys.hmacShaKeyFor(decodedKey);
+    }
+
+    public String createAccessToken(String provider, String providerId) {
+        return Jwts.builder()
+                .setSubject(provider + ":" + providerId)
+                .setIssuedAt(new Date())
+                .setExpiration(new Date(System.currentTimeMillis() + 3600 * 1000))
+                .signWith(secretKey)
+                .compact();
+    }
+
+    public String resolveToken(HttpServletRequest request) {
+        String bearer = request.getHeader("Authorization");
+        if (bearer != null && bearer.startsWith("Bearer ")) {
+            return bearer.substring(7);
+        }
+        return null;
+    }
+
+    public String getSubject(String token) {
+        return Jwts.parserBuilder()
+                .setSigningKey(secretKey)
+                .build()
+                .parseClaimsJws(token).getBody().getSubject();
+    }
+
+    public Member getMemberFromToken(String token) {
+        String subject = getSubject(token); // ex) "kakao:12345"
+        String[] parts = subject.split(":");
+        if (parts.length != 2) {
+            throw new RestApiException(AuthErrorCode.INVALID_TOKEN);
+        }
+
+        String provider = parts[0];
+        String providerId = parts[1];
+
+        return memberRepository.findByProviderAndProviderId(provider,providerId)
+                .orElseThrow(() -> new RestApiException(MemberErrorCode.MEMBER_NOT_FOUND));
+    }
+
+    public boolean validateToken(String token) {
+        try {
+            Jwts.parserBuilder()
+                    .setSigningKey(secretKey)
+                    .build()
+                    .parseClaimsJws(token);
+            return true;
+        } catch (Exception e) {
+            return false;
+        }
+    }
+}

src/main/java/com/example/matzipbookserver/global/resolver/CurrentMember.java

@@ -0,0 +1,9 @@
+package com.example.matzipbookserver.global.resolver;
+
+import java.lang.annotation.*;
+
+@Target({ElementType.PARAMETER})
+@Retention(RetentionPolicy.RUNTIME)
+@Documented
+public @interface CurrentMember {
+}