Merge remote-tracking branch 'origin/Dev-backend' into build/#10-back…

…end-cicd
tukcomCD2024 · Mar 31, 2024 · 82ab53e · 82ab53e
2 parents 4b3baad + e826bce
commit 82ab53e
Show file tree

Hide file tree

Showing 20 changed files with 191 additions and 176 deletions.
diff --git a/backend/ai_response_processor/.gitignore b/backend/ai_response_processor/.gitignore
@@ -0,0 +1,2 @@
+/env
+.env
diff --git a/backend/ai_response_processor/news/contentqueue/rabbitmq_producer.py b/backend/ai_response_processor/news/contentqueue/rabbitmq_producer.py
@@ -5,6 +5,8 @@
 
 from news.schema.message_item import MessageItem
 
+load_dotenv()
+
 CONFIG = {
     'username': os.getenv('RABBITMQ_USERNAME'),
     'password': os.getenv('RABBITMQ_PASSWORD'),

diff --git a/backend/ai_response_processor/requirements.txt b/backend/ai_response_processor/requirements.txt
@@ -2,5 +2,5 @@ langchain==0.0.332
 python-dotenv==1.0.0
 openai==0.28.0
 uvicorn==0.28.0
-pika
-fastapi
+pika==1.3.2
+fastapi==0.110.0
diff --git a/backend/core/build.gradle b/backend/core/build.gradle
@@ -36,6 +36,7 @@ dependencies {
 	implementation 'org.mapstruct:mapstruct:1.5.5.Final'
 	implementation 'org.jsoup:jsoup:1.15.3'
 	implementation 'org.springdoc:springdoc-openapi-starter-webmvc-ui:2.2.0'
+	implementation 'org.springframework.boot:spring-boot-starter-data-redis:2.3.1.RELEASE'
 
 	annotationProcessor 'org.projectlombok:lombok'
 	annotationProcessor 'org.mapstruct:mapstruct-processor:1.5.5.Final'

diff --git a/backend/core/src/main/java/com/rollthedice/backend/domain/member/entity/Member.java b/backend/core/src/main/java/com/rollthedice/backend/domain/member/entity/Member.java
@@ -14,14 +14,12 @@ public class Member extends BaseTimeEntity {
     @GeneratedValue(strategy = GenerationType.IDENTITY)
     private Long id;
 
-    private String oauthId;  //로그인한 소셜 타입의 식별자 값
+    private String oauthId;
     private String nickname;
     private String email;
     private String password;
     private String imageUrl;
 
-    private String refreshToken;
-
     @Enumerated(EnumType.STRING)
     private Role role;
 
@@ -37,11 +35,8 @@ public Member update(String email, String imageUrl) {
         return this;
     }
 
-    public void updateRefreshToken(String updateRefreshToken) {
-        this.refreshToken = updateRefreshToken;
-    }
-
-    public void updateNickname(String nickname) {
+    public void signUp(String nickname) {
         this.nickname = nickname;
+        this.role = Role.USER;
     }
 }
diff --git a/...core/src/main/java/com/rollthedice/backend/domain/member/repository/MemberRepository.java b/...core/src/main/java/com/rollthedice/backend/domain/member/repository/MemberRepository.java
@@ -11,7 +11,5 @@
 public interface MemberRepository extends JpaRepository<Member, Long> {
     Optional<Member> findByEmail(String email);
 
-    Optional<Member> findByRefreshToken(String refreshToken);
-
     Optional<Member> findBySocialTypeAndOauthId(SocialType socialType, String oauthId);
 }
diff --git a/backend/core/src/main/java/com/rollthedice/backend/domain/member/service/MemberService.java b/backend/core/src/main/java/com/rollthedice/backend/domain/member/service/MemberService.java
@@ -3,6 +3,10 @@
 import com.rollthedice.backend.domain.member.dto.SignUpDto;
 import com.rollthedice.backend.domain.member.entity.Member;
 import com.rollthedice.backend.domain.member.query.AuthService;
+import com.rollthedice.backend.global.jwt.refresh.service.RefreshTokenService;
+import com.rollthedice.backend.global.jwt.service.JwtService;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
 import lombok.RequiredArgsConstructor;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
@@ -11,10 +15,18 @@
 @Service
 public class MemberService {
     private final AuthService authService;
+    private final RefreshTokenService refreshTokenService;
+    private final JwtService jwtService;
+    private final HttpServletRequest request;
+    private final HttpServletResponse response;
 
     @Transactional
     public void signUp(SignUpDto dto) {
         Member member = authService.getMember();
-        member.updateNickname(dto.getNickname());
+        member.signUp(dto.getNickname());
+
+        String refreshToken = jwtService.createRefreshToken();
+        jwtService.setRefreshTokenHeader(response, refreshToken);
+        refreshTokenService.updateToken(member.getEmail(), refreshToken);
     }
 }
diff --git a/backend/core/src/main/java/com/rollthedice/backend/global/advice/ExceptionAdvice.java b/backend/core/src/main/java/com/rollthedice/backend/global/advice/ExceptionAdvice.java
@@ -0,0 +1,16 @@
+package com.rollthedice.backend.global.advice;
+
+import com.rollthedice.backend.global.jwt.exception.NotFoundTokenException;
+import org.springframework.http.HttpEntity;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+public class ExceptionAdvice {
+    @ExceptionHandler(NotFoundTokenException.class)
+    public ResponseEntity<HttpEntity> notFoundTokenException() {
+        return ResponseEntity.status(HttpStatus.NOT_FOUND).build();
+    }
+}
diff --git a/backend/core/src/main/java/com/rollthedice/backend/global/config/RedisConfig.java b/backend/core/src/main/java/com/rollthedice/backend/global/config/RedisConfig.java
@@ -0,0 +1,21 @@
+package com.rollthedice.backend.global.config;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.data.redis.connection.RedisConnectionFactory;
+import org.springframework.data.redis.connection.lettuce.LettuceConnectionFactory;
+
+@Configuration
+public class RedisConfig {
+    @Value("${spring.data.redis.host}")
+    private String host;
+
+    @Value("${spring.data.redis.port}")
+    private int port;
+
+    @Bean
+    public RedisConnectionFactory redisConnectionFactory() {
+        return new LettuceConnectionFactory(host, port);
+    }
+}
diff --git a/backend/core/src/main/java/com/rollthedice/backend/global/config/SecurityConfig.java b/backend/core/src/main/java/com/rollthedice/backend/global/config/SecurityConfig.java
@@ -3,20 +3,17 @@
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.rollthedice.backend.domain.member.repository.MemberRepository;
 import com.rollthedice.backend.global.jwt.filter.JwtAuthenticationProcessingFilter;
+import com.rollthedice.backend.global.jwt.refresh.service.RefreshTokenService;
 import com.rollthedice.backend.global.jwt.service.JwtService;
-import com.rollthedice.backend.global.login.filter.CustomJsonUsernamePasswordAuthenticationFilter;
-import com.rollthedice.backend.global.login.handler.LoginFailureHandler;
-import com.rollthedice.backend.global.login.handler.LoginSuccessHandler;
-import com.rollthedice.backend.global.login.service.LoginService;
+//import com.rollthedice.backend.global.login.handler.LoginFailureHandler;
+//import com.rollthedice.backend.global.login.handler.LoginSuccessHandler;
+//import com.rollthedice.backend.global.login.service.LoginService;
 import com.rollthedice.backend.global.oauth2.handler.OAuth2LoginFailureHandler;
 import com.rollthedice.backend.global.oauth2.handler.OAuth2LoginSuccessHandler;
 import com.rollthedice.backend.global.oauth2.service.CustomOAuth2UserService;
 import lombok.RequiredArgsConstructor;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.security.authentication.AuthenticationManager;
-import org.springframework.security.authentication.ProviderManager;
-import org.springframework.security.authentication.dao.DaoAuthenticationProvider;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
@@ -31,13 +28,13 @@
 @EnableWebSecurity
 @RequiredArgsConstructor
 public class SecurityConfig {
-    private final LoginService loginService;
     private final JwtService jwtService;
     private final MemberRepository memberRepository;
-    private final ObjectMapper objectMapper;
     private final OAuth2LoginSuccessHandler oAuth2LoginSuccessHandler;
     private final OAuth2LoginFailureHandler oAuth2LoginFailureHandler;
     private final CustomOAuth2UserService customOAuth2UserService;
+    private final RefreshTokenService refreshTokenService;
+
 
     @Bean
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
@@ -58,9 +55,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                         .failureHandler(oAuth2LoginFailureHandler)
                         .userInfoEndpoint(userInfo -> userInfo.userService(customOAuth2UserService))  //customUserService 설정
                 );
-        http.addFilterAfter(customJsonUsernamePasswordAuthenticationFilter(), LogoutFilter.class);
-        http.addFilterBefore(jwtAuthenticationProcessingFilter(), CustomJsonUsernamePasswordAuthenticationFilter.class);
-
+        http.addFilterAfter(jwtAuthenticationProcessingFilter(), LogoutFilter.class);
         return http.build();
     }
 
@@ -69,36 +64,8 @@ public PasswordEncoder passwordEncoder() {
         return PasswordEncoderFactories.createDelegatingPasswordEncoder();
     }
 
-    @Bean
-    public AuthenticationManager authenticationManager() {
-        DaoAuthenticationProvider provider = new DaoAuthenticationProvider();
-        provider.setPasswordEncoder(passwordEncoder());
-        provider.setUserDetailsService(loginService);
-        return new ProviderManager(provider);
-    }
-
-    @Bean
-    public LoginSuccessHandler loginSuccessHandler() {
-        return new LoginSuccessHandler(jwtService, memberRepository);
-    }
-
-    @Bean
-    public LoginFailureHandler loginFailureHandler() {
-        return new LoginFailureHandler();
-    }
-
-    @Bean
-    public CustomJsonUsernamePasswordAuthenticationFilter customJsonUsernamePasswordAuthenticationFilter() {
-        CustomJsonUsernamePasswordAuthenticationFilter customJsonUsernamePasswordLoginFilter
-                = new CustomJsonUsernamePasswordAuthenticationFilter(objectMapper);
-        customJsonUsernamePasswordLoginFilter.setAuthenticationManager(authenticationManager());
-        customJsonUsernamePasswordLoginFilter.setAuthenticationSuccessHandler(loginSuccessHandler());
-        customJsonUsernamePasswordLoginFilter.setAuthenticationFailureHandler(loginFailureHandler());
-        return customJsonUsernamePasswordLoginFilter;
-    }
-
     @Bean
     public JwtAuthenticationProcessingFilter jwtAuthenticationProcessingFilter() {
-        return new JwtAuthenticationProcessingFilter(jwtService, memberRepository);
+        return new JwtAuthenticationProcessingFilter(jwtService, refreshTokenService, memberRepository);
     }
 }
diff --git a/...re/src/main/java/com/rollthedice/backend/global/jwt/exception/NotFoundTokenException.java b/...re/src/main/java/com/rollthedice/backend/global/jwt/exception/NotFoundTokenException.java
@@ -0,0 +1,14 @@
+package com.rollthedice.backend.global.jwt.exception;
+
+public class NotFoundTokenException extends RuntimeException {
+    public NotFoundTokenException() {
+    }
+
+    public NotFoundTokenException(String message) {
+        super(message);
+    }
+
+    public NotFoundTokenException(String message, Throwable cause) {
+        super(message, cause);
+    }
+}
diff --git a/...ain/java/com/rollthedice/backend/global/jwt/filter/JwtAuthenticationProcessingFilter.java b/...ain/java/com/rollthedice/backend/global/jwt/filter/JwtAuthenticationProcessingFilter.java
@@ -2,6 +2,8 @@
 
 import com.rollthedice.backend.domain.member.entity.Member;
 import com.rollthedice.backend.domain.member.repository.MemberRepository;
+import com.rollthedice.backend.global.jwt.refresh.domain.RefreshToken;
+import com.rollthedice.backend.global.jwt.refresh.service.RefreshTokenService;
 import com.rollthedice.backend.global.jwt.service.JwtService;
 import com.rollthedice.backend.global.jwt.util.PasswordUtil;
 import jakarta.servlet.FilterChain;
@@ -27,14 +29,16 @@ public class JwtAuthenticationProcessingFilter extends OncePerRequestFilter {
     private static final String NO_CHECK_URL = "/login";
 
     private final JwtService jwtService;
+    private final RefreshTokenService refreshTokenService;
     private final MemberRepository memberRepository;
 
     private GrantedAuthoritiesMapper authoritiesMapper = new NullAuthoritiesMapper();
 
     @Override
-    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
+    protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response,
+                                    FilterChain filterChain) throws ServletException, IOException {
         if (request.getRequestURI().equals(NO_CHECK_URL)) {
-            filterChain.doFilter(request, response);  // "/login" 요청이 들어오면, 다음 필터 호출
+            filterChain.doFilter(request, response);
             return;
         }
         String refreshToken = jwtService.extractRefreshToken(request)
@@ -46,29 +50,26 @@ protected void doFilterInternal(HttpServletRequest request, HttpServletResponse
             return;
         }
 
-        if (refreshToken == null) {
-            log.info("refresh token is null");
-            checkAccessTokenAndAuthentication(request, response, filterChain);
-        }
+        log.info("refresh token is null");
+        checkAccessTokenAndAuthentication(request, response, filterChain);
     }
 
     public void checkRefreshTokenAndReIssueAccessToken(HttpServletResponse response, String refreshToken) {
-        memberRepository.findByRefreshToken(refreshToken)
-                .ifPresent(member -> {
-                    String reIssueRefreshToken = reIssueRefreshToken(member);
-                    jwtService.sendAccessAndRefreshToken(response, jwtService.createAccessToken(member.getEmail()),
-                            reIssueRefreshToken);
-                });
+        RefreshToken refresh = refreshTokenService.findByToken(refreshToken);
+        String reIssuedRefreshToken = reIssueRefreshToken(refresh.getEmail());
+        jwtService.sendAccessAndRefreshToken(response,
+                jwtService.createAccessToken(refresh.getEmail()), reIssuedRefreshToken);
     }
 
-    private String reIssueRefreshToken(Member member) {
+    private String reIssueRefreshToken(String email) {
         String reIssuedRefreshToken = jwtService.createRefreshToken();
-        member.updateRefreshToken(reIssuedRefreshToken);
-        memberRepository.saveAndFlush(member);
+
+        refreshTokenService.updateToken(email, reIssuedRefreshToken);
         return reIssuedRefreshToken;
     }
 
-    private void checkAccessTokenAndAuthentication(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
+    private void checkAccessTokenAndAuthentication(HttpServletRequest request, HttpServletResponse response,
+        FilterChain filterChain) throws ServletException, IOException {
         jwtService.extractAccessToken(request)
                 .filter(jwtService::isTokenValid)
                 .ifPresent(accessToken -> jwtService.extractEmail(accessToken)
@@ -78,9 +79,14 @@ private void checkAccessTokenAndAuthentication(HttpServletRequest request, HttpS
     }
 
     public void saveAuthentication(Member member) {
+        String password = member.getPassword();
+        if (password == null) {
+            password = PasswordUtil.generateRandomPassword();
+        }
+
         UserDetails userDetails = User.builder()
                 .username(member.getEmail())
-                .password(PasswordUtil.generateRandomPassword())
+                .password(password)
                 .roles(member.getRole().name())
                 .build();
 

diff --git a/...nd/core/src/main/java/com/rollthedice/backend/global/jwt/refresh/domain/RefreshToken.java b/...nd/core/src/main/java/com/rollthedice/backend/global/jwt/refresh/domain/RefreshToken.java
@@ -0,0 +1,34 @@
+package com.rollthedice.backend.global.jwt.refresh.domain;
+
+import lombok.AccessLevel;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+import org.springframework.data.annotation.Id;
+import org.springframework.data.redis.core.RedisHash;
+import org.springframework.data.redis.core.TimeToLive;
+import org.springframework.data.redis.core.index.Indexed;
+
+@Getter
+@NoArgsConstructor(access = AccessLevel.PRIVATE)
+@RedisHash(value = "refreshToken")
+public class RefreshToken {
+
+    @Id
+    private String email;
+
+    @Indexed
+    private String refreshToken;
+
+    @TimeToLive()
+    private Long expirationPeriod;
+
+    public RefreshToken(String email) {
+        this.email = email;
+    }
+
+    public void createRefreshToken(String refreshToken, Long expiration) {
+        this.refreshToken = refreshToken;
+        this.expirationPeriod = expiration;
+    }
+}
+
diff --git a/...in/java/com/rollthedice/backend/global/jwt/refresh/repository/RefreshTokenRepository.java b/...in/java/com/rollthedice/backend/global/jwt/refresh/repository/RefreshTokenRepository.java
@@ -0,0 +1,10 @@
+package com.rollthedice.backend.global.jwt.refresh.repository;
+
+import com.rollthedice.backend.global.jwt.refresh.domain.RefreshToken;
+import org.springframework.data.repository.CrudRepository;
+
+import java.util.Optional;
+
+public interface RefreshTokenRepository extends CrudRepository<RefreshToken, String> {
+    Optional<RefreshToken> findByRefreshToken(String refreshToken);
+}