-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathOAuthService.java
More file actions
132 lines (103 loc) ยท 5.84 KB
/
OAuthService.java
File metadata and controls
132 lines (103 loc) ยท 5.84 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
package ssu.eatssu.domain.auth.service;
import lombok.RequiredArgsConstructor;
import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
import org.springframework.security.core.Authentication;
import org.springframework.stereotype.Service;
import org.springframework.transaction.annotation.Transactional;
import ssu.eatssu.domain.auth.dto.*;
import ssu.eatssu.domain.auth.entity.AppleAuthenticator;
import ssu.eatssu.domain.auth.entity.OAuthProvider;
import ssu.eatssu.domain.auth.security.JwtTokenProvider;
import ssu.eatssu.domain.auth.util.RandomNicknameUtil;
import ssu.eatssu.domain.user.dto.Tokens;
import ssu.eatssu.domain.user.entity.DeviceType;
import ssu.eatssu.domain.user.entity.User;
import ssu.eatssu.domain.user.repository.UserRepository;
import ssu.eatssu.domain.user.service.UserService;
import ssu.eatssu.global.handler.response.BaseException;
import static ssu.eatssu.domain.auth.entity.OAuthProvider.APPLE;
import static ssu.eatssu.domain.auth.entity.OAuthProvider.KAKAO;
@Service
@Transactional
@RequiredArgsConstructor
public class OAuthService {
private final UserService userService;
private final UserRepository userRepository;
private final AppleAuthenticator appleAuthenticator;
private final AuthenticationManagerBuilder authenticationManagerBuilder;
private final JwtTokenProvider jwtTokenProvider;
public Tokens kakaoLogin(KakaoLoginRequest request) {
User user = userRepository.findByProviderId(request.providerId())
.orElseGet(() -> userRepository.findFirstByEmailOrderByIdAsc(request.email())
.orElseGet(() -> userService.join(request.email(), KAKAO, request.providerId())));
return generateOauthJwtTokens(user.getEmail(), KAKAO, request.providerId());
}
/**
* V1 -> V2๋ก ๋์ด๊ฐ๋ฉด์ DeviceType(IOS,ANDROID) ์ ๋ณด๋ฅผ ์ถ๊ฐ๋ก ๋ฐ๊ฒ ๋์๊ณ , ๊ธฐ์กด์ ๊ฐ์
ํ ์ ์ ๋ค์ ์ถ๊ฐ๋ก ๊ธฐ์
ํด ์ฃผ๊ฒ ๋ฉ๋๋ค.
*/
public Tokens kakaoLoginV2(KakaoLoginRequestV2 request) {
User user = userRepository.findByProviderId(request.providerId())
.orElseGet(() -> userRepository.findFirstByEmailOrderByIdAsc(request.email())
.orElseGet(() -> userService.joinV2(request.email(), KAKAO, request.providerId(),request.deviceType())));
user.updateDeviceType(request.deviceType());
return generateOauthJwtTokens(user.getEmail(), KAKAO, request.providerId());
}
public Tokens appleLogin(AppleLoginRequest request) {
OAuthInfo oAuthInfo = appleAuthenticator.getOAuthInfoByIdentityToken(request.identityToken());
User user = userRepository.findByProviderId(oAuthInfo.providerId())
.orElseGet(() -> userRepository.findFirstByEmailOrderByIdAsc(oAuthInfo.email())
.orElseGet(() -> userService.join(oAuthInfo.email(), APPLE, oAuthInfo.providerId())));
updateAppleUserEmail(user, oAuthInfo.email());
return generateOauthJwtTokens(user.getEmail(), APPLE, oAuthInfo.providerId());
}
/**
* V1 -> V2๋ก ๋์ด๊ฐ๋ฉด์ DeviceType(IOS,ANDROID) ์ ๋ณด๋ฅผ ์ถ๊ฐ๋ก ๋ฐ๊ฒ ๋์๊ณ , ๊ธฐ์กด์ ๊ฐ์
ํ ์ ์ ๋ค์ ์ถ๊ฐ๋ก ๊ธฐ์
ํด ์ฃผ๊ฒ ๋ฉ๋๋ค.
*/
public Tokens appleLoginV2(AppleLoginRequestV2 request) {
OAuthInfo oAuthInfo = appleAuthenticator.getOAuthInfoByIdentityToken(request.identityToken());
User user = userRepository.findByProviderId(oAuthInfo.providerId())
.orElseGet(() -> userRepository.findFirstByEmailOrderByIdAsc(oAuthInfo.email())
.orElseGet(() -> userService.joinV2(oAuthInfo.email(), APPLE, oAuthInfo.providerId(),request.deviceType())));
updateAppleUserEmail(user, oAuthInfo.email());
user.updateDeviceType(request.deviceType());
return generateOauthJwtTokens(user.getEmail(), APPLE, oAuthInfo.providerId());
}
public Tokens refreshTokens(Authentication authentication) {
return jwtTokenProvider.generateTokens(authentication);
}
private void updateAppleUserEmail(User user, String email) {
if (isHideEmail(user.getEmail()) && !isHideEmail(email)) {
user.updateEmail(email);
userRepository.save(user);
}
}
public Boolean validToken(ValidRequest request) {
String token = request.token();
try {
return jwtTokenProvider.validateToken(token);
} catch (BaseException e) {
return false;
}
}
private boolean isHideEmail(String email) {
if (email.length() > 25) {
return email.startsWith("@privaterelay.appleid.com", email.length() - 25);
} else {
return false;
}
}
// FIXME: ๊ฐ์ ์ด๋ฉ์ผ๋ก ์นด์นด์ค, ์ ํ ๋ฑ ์ฌ๋ฌ ํ์๊ฐ์
์ ํ ํ์ ์ฒ๋ฆฌ ํ์.
// ์ฌ์ฉ์๋ ๊ฐ์ ์ด๋ฉ์ผ๋ก ๋ก๊ทธ์ธ์ ์งํํ์ ์ ๊ฐ์ ๊ณ์ ์ ์ ๊ทผํ๊ธฐ๋ฅผ ์ํจ.
// iPhone์ ์ฌ์ฉํ๋ ์ฌ์ฉ์๋ค์์๋ง ํํจ.
// ํ์ง๋ง private relay๋ฅผ ์ฌ์ฉํ๋ ๊ฒฝ์ฐ๋ ์๋๋ฐ, ์ด๋ด ๋๋ ์ฌ์ฉ์์ ๊ณ์ ์ ๋ฌถ๊ธฐ ๋ค์ ๋ณต์กํ๋ค.
private Tokens generateOauthJwtTokens(String email, OAuthProvider provider, String providerId) {
UsernamePasswordAuthenticationToken authenticationToken =
new UsernamePasswordAuthenticationToken(email, makeOauthCredentials(provider, providerId));
Authentication authentication = authenticationManagerBuilder.getObject().authenticate(authenticationToken);
return jwtTokenProvider.generateTokens(authentication);
}
private String makeOauthCredentials(OAuthProvider provider, String providerId) {
return provider + providerId;
}
}