Merge pull request #27 from Nexters/feature/6-user-kakao-social-login-api

feat: 카카오 소셜 로그인 및 사용자 온보딩 시스템 구현

Author: 1117mg

.env.example

@@ -8,4 +8,18 @@ POSTGRES_USER=root
 POSTGRES_PASSWORD=password
 
 # Docker Hub configuration (for deployment)
-DOCKER_USERNAME=your-dockerhub-username
+DOCKER_USERNAME=your-dockerhub-username
+
+# Kakao Social Login
+KAKAO_CLIENT_ID=your-kakao-app-key
+KAKAO_CLIENT_SECRET=your-kakao-client-secret
+
+# 로컬 환경
+OAUTH_REDIRECT_URI=http://localhost:9090/oauth2/redirect
+# 테스트 환경
+#OAUTH_REDIRECT_URI=https://dev.holdy.kr/oauth2/redirect
+# 운영 환경
+#OAUTH_REDIRECT_URI=https://holdy.kr/oauth2/redirect
+
+# JWT
+JWT_SECRET_KEY=your-secret-key

build.gradle

@@ -34,6 +34,15 @@ dependencies {
     implementation 'org.flywaydb:flyway-core'
     runtimeOnly 'org.flywaydb:flyway-database-postgresql'
     implementation 'org.springdoc:springdoc-openapi-starter-webmvc-ui:2.8.9'
+    implementation 'org.springframework.boot:spring-boot-starter-security'
+
+    // spring security
+    implementation 'org.springframework.boot:spring-boot-starter-oauth2-client'
+
+    // jwt
+    implementation("io.jsonwebtoken:jjwt-api:0.11.5")
+    runtimeOnly("io.jsonwebtoken:jjwt-impl:0.11.5")
+    runtimeOnly("io.jsonwebtoken:jjwt-jackson:0.11.5")
 }
 
 tasks.named('test') {

docker-compose.dev.yaml

@@ -21,6 +21,10 @@ services:
       - DB_URL=jdbc:postgresql://db:5432/${POSTGRES_DB:-db}
       - DB_USERNAME=${POSTGRES_USER:-root}
       - DB_PASSWORD=${POSTGRES_PASSWORD:-password}
+      - KAKAO_CLIENT_ID=${KAKAO_CLIENT_ID}
+      - KAKAO_CLIENT_SECRET=${KAKAO_CLIENT_SECRET}
+      - JWT_SECRET_KEY=${JWT_SECRET_KEY}
+      - APP_OAUTH2_AUTHORIZED_REDIRECT_URI=${OAUTH_REDIRECT_URI}
     ports:
       - 9090:8080
     depends_on:

docker-compose.prod.yaml

@@ -21,6 +21,10 @@ services:
       - DB_URL=jdbc:postgresql://db:5432/${POSTGRES_DB:-db}
       - DB_USERNAME=${POSTGRES_USER:-root}
       - DB_PASSWORD=${POSTGRES_PASSWORD:-password}
+      - KAKAO_CLIENT_ID=${KAKAO_CLIENT_ID}
+      - KAKAO_CLIENT_SECRET=${KAKAO_CLIENT_SECRET}
+      - JWT_SECRET_KEY=${JWT_SECRET_KEY}
+      - APP_OAUTH2_AUTHORIZED_REDIRECT_URI=${OAUTH_REDIRECT_URI}
     ports:
       - 9090:8080
     depends_on:

src/main/java/com/climbup/climbup/auth/controller/OnboardingController.java

@@ -0,0 +1,96 @@
+package com.climbup.climbup.auth.controller;
+
+import com.climbup.climbup.auth.dto.OnboardingDto;
+import com.climbup.climbup.auth.service.OnboardingService;
+import com.climbup.climbup.auth.util.JwtUtil;
+import com.climbup.climbup.user.docs.UserApiDocs;
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.Parameter;
+import io.swagger.v3.oas.annotations.responses.ApiResponse;
+import io.swagger.v3.oas.annotations.security.SecurityRequirement;
+import io.swagger.v3.oas.annotations.tags.Tag;
+import lombok.RequiredArgsConstructor;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.*;
+
+@Tag(name = "Onboarding", description = "사용자 온보딩 API")
+@RestController
+@RequestMapping("/api/onboarding")
+@RequiredArgsConstructor
+public class OnboardingController {
+
+    private final OnboardingService onboardingService;
+    private final JwtUtil jwtUtil;
+
+    @Operation(
+            summary = "온보딩 완료",
+            description = "암장과 레벨을 동시에 설정하여 온보딩을 완료합니다.",
+            security = @SecurityRequirement(name = "bearerAuth")
+    )
+    @ApiResponse(responseCode = "200", description = "온보딩 완료 성공")
+    @PostMapping("/complete")
+    public ResponseEntity<OnboardingDto.Response> completeOnboarding(
+            @Parameter(
+                    description = UserApiDocs.AUTHORIZATION_DESCRIPTION,
+                    required = true,
+                    example = UserApiDocs.AUTHORIZATION_EXAMPLE
+            )
+            @RequestHeader("Authorization") String authorization,
+            @RequestBody OnboardingDto.CompleteRequest request) {
+
+        String token = authorization.replace("Bearer ", "");
+        Long userId = jwtUtil.getUserId(token);
+
+        onboardingService.completeOnboarding(userId, request.getGymId(), request.getLevelId());
+
+        return ResponseEntity.ok(new OnboardingDto.Response("온보딩이 완료되었습니다."));
+    }
+
+    @Operation(
+            summary = "암장 선택",
+            description = "사용자의 암장을 설정합니다.",
+            security = @SecurityRequirement(name = "bearerAuth")
+    )
+    @ApiResponse(responseCode = "200", description = "암장 설정 성공")
+    @PostMapping("/gym")
+    public ResponseEntity<OnboardingDto.Response> setGym(
+            @Parameter(
+                    description = UserApiDocs.AUTHORIZATION_DESCRIPTION,
+                    required = true,
+                    example = UserApiDocs.AUTHORIZATION_EXAMPLE
+            )
+            @RequestHeader("Authorization") String authorization,
+            @RequestBody OnboardingDto.GymRequest request) {
+
+        String token = authorization.replace("Bearer ", "");
+        Long userId = jwtUtil.getUserId(token);
+
+        onboardingService.setUserGym(userId, request.getGymId());
+
+        return ResponseEntity.ok(new OnboardingDto.Response("암장이 설정되었습니다."));
+    }
+
+    @Operation(
+            summary = "레벨 선택",
+            description = "사용자의 레벨을 설정합니다.",
+            security = @SecurityRequirement(name = "bearerAuth")
+    )
+    @ApiResponse(responseCode = "200", description = "레벨 설정 성공")
+    @PostMapping("/level")
+    public ResponseEntity<OnboardingDto.Response> setLevel(
+            @Parameter(
+                    description = UserApiDocs.AUTHORIZATION_DESCRIPTION,
+                    required = true,
+                    example = UserApiDocs.AUTHORIZATION_EXAMPLE
+            )
+            @RequestHeader("Authorization") String authorization,
+            @RequestBody OnboardingDto.LevelRequest request) {
+
+        String token = authorization.replace("Bearer ", "");
+        Long userId = jwtUtil.getUserId(token);
+
+        onboardingService.setUserLevel(userId, request.getLevelId());
+
+        return ResponseEntity.ok(new OnboardingDto.Response("레벨이 설정되었습니다."));
+    }
+}

src/main/java/com/climbup/climbup/auth/dto/CustomOAuth2User.java

@@ -0,0 +1,41 @@
+package com.climbup.climbup.auth.dto;
+
+import com.climbup.climbup.user.entity.User;
+import lombok.Getter;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+import org.springframework.security.oauth2.core.user.OAuth2User;
+
+import java.util.Collection;
+import java.util.Collections;
+import java.util.Map;
+
+@Getter
+public class CustomOAuth2User implements OAuth2User {
+    private final User user;
+    private final Map<String, Object> attributes;
+
+    public CustomOAuth2User(User user, Map<String, Object> attributes) {
+        this.user = user;
+        this.attributes = attributes;
+    }
+
+    @Override
+    public Map<String, Object> getAttributes() {
+        return attributes;
+    }
+
+    @Override
+    public Collection<? extends GrantedAuthority> getAuthorities() {
+        return Collections.singletonList(new SimpleGrantedAuthority("ROLE_USER"));
+    }
+
+    @Override
+    public String getName() {
+        return user.getKakaoId();
+    }
+
+    public Long getUserId() {
+        return user.getId();
+    }
+}

src/main/java/com/climbup/climbup/auth/dto/KakaoOAuth2UserInfo.java

@@ -0,0 +1,37 @@
+package com.climbup.climbup.auth.dto;
+
+import java.util.Map;
+
+public class KakaoOAuth2UserInfo {
+    private final Map<String, Object> attributes;
+    private final Map<String, Object> properties;
+
+    public KakaoOAuth2UserInfo(Map<String, Object> attributes) {
+        this.attributes = attributes;
+        this.properties = (Map<String, Object>) attributes.get("properties");
+    }
+
+    public String getId() {
+        return String.valueOf(attributes.get("id"));
+    }
+
+    public String getNickname() {
+        if (properties == null) {
+            return "클라이머" + getId().substring(0, 4);
+        }
+        String nickname = (String) properties.get("nickname");
+        return nickname != null ? nickname : "클라이머" + getId().substring(0, 4);
+    }
+
+    public String getProfileImageUrl() {
+        if (properties == null) {
+            return getDefaultImageUrl();
+        }
+        String imageUrl = (String) properties.get("profile_image");
+        return imageUrl != null ? imageUrl : getDefaultImageUrl();
+    }
+
+    private String getDefaultImageUrl() {
+        return "https://via.placeholder.com/150?text=User";
+    }
+}

src/main/java/com/climbup/climbup/auth/dto/OnboardingDto.java

@@ -0,0 +1,47 @@
+package com.climbup.climbup.auth.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@NoArgsConstructor
+public class OnboardingDto {
+
+    @Getter
+    @NoArgsConstructor
+    @Schema(description = "온보딩 완료 요청")
+    public static class CompleteRequest {
+        @Schema(description = "암장 ID", example = "1")
+        private Long gymId;
+
+        @Schema(description = "레벨 ID", example = "1")
+        private Long levelId;
+    }
+
+    @Getter
+    @NoArgsConstructor
+    @Schema(description = "암장 선택 요청")
+    public static class GymRequest {
+        @Schema(description = "암장 ID", example = "1")
+        private Long gymId;
+    }
+
+    @Getter
+    @NoArgsConstructor
+    @Schema(description = "레벨 선택 요청")
+    public static class LevelRequest {
+        @Schema(description = "레벨 ID", example = "1")
+        private Long levelId;
+    }
+
+    @Getter
+    @Schema(description = "온보딩 응답")
+    public static class Response {
+        @Schema(description = "결과 메시지", example = "온보딩이 완료되었습니다.")
+        private final String message;
+
+        public Response(String message) {
+            this.message = message;
+        }
+    }
+}

src/main/java/com/climbup/climbup/auth/handler/OAuth2SuccessHandler.java

@@ -0,0 +1,51 @@
+package com.climbup.climbup.auth.handler;
+
+import com.climbup.climbup.auth.dto.CustomOAuth2User;
+import com.climbup.climbup.auth.util.JwtUtil;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler;
+import org.springframework.stereotype.Component;
+
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.net.URLEncoder;
+import java.nio.charset.StandardCharsets;
+
+@Component
+@RequiredArgsConstructor
+@Slf4j
+public class OAuth2SuccessHandler extends SimpleUrlAuthenticationSuccessHandler {
+
+    private final JwtUtil jwtUtil;
+
+    @Value("${app.oauth2.authorized-redirect-uri:http://localhost:3000/auth/callback}")
+    private String redirectUri;
+
+    @Override
+    public void onAuthenticationSuccess(HttpServletRequest request, HttpServletResponse response,
+                                        Authentication authentication) throws IOException {
+
+        try {
+            CustomOAuth2User oauth2User = (CustomOAuth2User) authentication.getPrincipal();
+            log.info("✅ 로그인 성공: userId={}", oauth2User.getUserId());
+
+            // JWT에는 userId만 포함
+            String token = jwtUtil.createAccessToken(oauth2User.getUserId());
+
+            // 프론트엔드 콜백 페이지로 리다이렉트
+            String targetUrl = redirectUri + "?token=" + URLEncoder.encode(token, StandardCharsets.UTF_8);
+
+            log.info("프론트엔드로 리다이렉트: {}", targetUrl);
+            response.sendRedirect(targetUrl);
+
+        } catch (Exception e) {
+            log.error("❌ OAuth2 성공 핸들러 오류", e);
+            String errorUrl = redirectUri.replace("/auth/callback", "/login?error=oauth_error");
+            response.sendRedirect(errorUrl);
+        }
+    }
+}