Merge pull request #119 from OurMenu/KAN-51-fix/email

[FIX] 이메일 중복 허용

Author: david-parkk

src/main/java/com/ourmenu/backend/domain/user/application/CustomUserDetailsService.java

@@ -1,27 +1,25 @@
 package com.ourmenu.backend.domain.user.application;
 
 import com.ourmenu.backend.domain.user.dao.UserRepository;
+import com.ourmenu.backend.domain.user.domain.SignInType;
 import com.ourmenu.backend.domain.user.domain.User;
 import com.ourmenu.backend.domain.user.domain.CustomUserDetails;
 import com.ourmenu.backend.domain.user.exception.NotFoundUserException;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.security.core.userdetails.UserDetails;
-import org.springframework.security.core.userdetails.UserDetailsService;
 import org.springframework.security.core.userdetails.UsernameNotFoundException;
 import org.springframework.stereotype.Service;
 
 @Service
 @RequiredArgsConstructor
 @Slf4j
-public class CustomUserDetailsService implements UserDetailsService {
+public class CustomUserDetailsService {
 
     private final UserRepository userRepository;
 
-    @Override
-    public UserDetails loadUserByUsername(String email) throws UsernameNotFoundException {
-
-        User user= userRepository.findByEmail(email).
+    public UserDetails loadUserByEmailAndSignInType(String email, SignInType signInType) throws UsernameNotFoundException {
+        User user= userRepository.findByEmailAndSignInType(email, signInType).
                 orElseThrow(NotFoundUserException::new);
 
         return new CustomUserDetails(

src/main/java/com/ourmenu/backend/domain/user/application/EmailService.java

@@ -3,6 +3,7 @@
 import com.ourmenu.backend.domain.user.dao.ConfirmCodeRepository;
 import com.ourmenu.backend.domain.user.dao.UserRepository;
 import com.ourmenu.backend.domain.user.domain.ConfirmCode;
+import com.ourmenu.backend.domain.user.domain.SignInType;
 import com.ourmenu.backend.domain.user.domain.User;
 import com.ourmenu.backend.domain.user.dto.request.PostEmailRequest;
 import com.ourmenu.backend.domain.user.dto.response.EmailResponse;
@@ -84,7 +85,7 @@ public void verifyConfirmCode(VerifyEmailRequest request){
     public TemporaryPasswordResponse sendTemporaryPassword(PostEmailRequest request) {
         String email = request.getEmail();
         String temporaryPassword = generateRandomCode(8);
-        User user = userRepository.findByEmail(email)
+        User user = userRepository.findByEmailAndSignInType(email, SignInType.EMAIL)
                 .orElseThrow(NotFoundUserException::new);
 
         user.changePassword(passwordEncoder.encode(temporaryPassword));

src/main/java/com/ourmenu/backend/domain/user/application/UserService.java

@@ -55,8 +55,15 @@ public class UserService {
      */
     @Transactional
     public TokenDto signUp(SignUpRequest request) {
+        SignInType signInType = SignInType.convert(request.getSignInType());
+        String email = request.getEmail();
+        User savedUser;
 
-        User savedUser = saveUser(request);
+        if (signInType.equals(SignInType.KAKAO)) {
+            savedUser = signUpByKakao(email);
+        } else {
+            savedUser = signUpByEmail(email, request.getPassword());
+        }
 
         List<MealTime> mealTimes = mealTimeService.saveMealTimes(request.getMealTime(), savedUser.getId());
 
@@ -65,8 +72,12 @@ public TokenDto signUp(SignUpRequest request) {
             throw new InvalidMealTimeCountException();
         }
 
-        TokenDto tokenDto = jwtTokenProvider.createAllToken(request.getEmail());
-        RefreshToken refreshToken = new RefreshToken(tokenDto.getRefreshToken(), request.getEmail());
+        TokenDto tokenDto = jwtTokenProvider.createAllToken(email, signInType);
+        RefreshToken refreshToken = new RefreshToken(
+                tokenDto.getRefreshToken(),
+                email,
+                signInType
+        );
         refreshTokenRepository.save(refreshToken);
         return tokenDto;
     }
@@ -79,24 +90,34 @@ public TokenDto signUp(SignUpRequest request) {
      */
     @Transactional
     public TokenDto signIn(SignInRequest request) {
-        Optional<User> optionalUser = userRepository.findByEmail(request.getEmail());
-        if (optionalUser.isEmpty() || !optionalUser.get().getSignInType().name().equals(request.getSignInType())) {
+        String email = request.getEmail();
+        SignInType signInType = SignInType.convert(request.getSignInType());
+
+        Optional<User> optionalUser = userRepository
+                .findByEmailAndSignInType(email, signInType);
+
+        if (optionalUser.isEmpty() || !optionalUser.get().getSignInType().equals(signInType)) {
             throw new NotFoundUserException();
         }
 
         User user = optionalUser.get();
 
-        if (request.getSignInType().equals("EMAIL") && !passwordEncoder.matches(request.getPassword(), user.getPassword())) {
+        if (signInType.equals(SignInType.EMAIL) && !passwordEncoder.matches(request.getPassword(), user.getPassword())) {
             throw new NotMatchPasswordException();
         }
 
-        TokenDto tokenDto = jwtTokenProvider.createAllToken(request.getEmail());
-        Optional<RefreshToken> refreshToken = refreshTokenRepository.findRefreshTokenByEmail(request.getEmail());
+        TokenDto tokenDto = jwtTokenProvider.createAllToken(email, signInType);
+        Optional<RefreshToken> refreshToken = refreshTokenRepository
+                .findRefreshTokenByEmailAndSignInType(email, signInType);
 
         if (refreshToken.isPresent()) {
             refreshTokenRepository.save(refreshToken.get().updateToken(tokenDto.getRefreshToken()));
         } else {
-            RefreshToken newToken = new RefreshToken(tokenDto.getRefreshToken(), request.getEmail());
+            RefreshToken newToken = new RefreshToken(
+                    tokenDto.getRefreshToken(),
+                    email,
+                    signInType
+            );
             refreshTokenRepository.save(newToken);
         }
 
@@ -158,6 +179,7 @@ public UserDto getUserInfo(CustomUserDetails userDetails) {
     public TokenDto reissueToken(ReissueRequest reissueRequest) {
         String refreshToken = reissueRequest.getRefreshToken();
         String email = jwtTokenProvider.getEmailFromToken(refreshToken);
+        SignInType signInType = jwtTokenProvider.getSignInTypeFromToken(refreshToken);
 
         if (email.isEmpty()) {
             throw new InvalidTokenException();
@@ -167,14 +189,14 @@ public TokenDto reissueToken(ReissueRequest reissueRequest) {
             throw new TokenExpiredExcpetion();
         }
 
-        RefreshToken storedToken = refreshTokenRepository.findRefreshTokenByEmail(email)
+        RefreshToken storedToken = refreshTokenRepository.findRefreshTokenByEmailAndSignInType(email, signInType)
                 .orElseThrow(NotMatchTokenException::new);
 
-        String newAccessToken = jwtTokenProvider.createToken(email, "Access");
+        String newAccessToken = jwtTokenProvider.createToken(email, signInType, "Access");
         String newRefreshToken = reissueRequest.getRefreshToken();
 
         if (jwtTokenProvider.validateToken(refreshToken)) {
-            newRefreshToken = jwtTokenProvider.createToken(email, "Refresh");
+            newRefreshToken = jwtTokenProvider.createToken(email, signInType, "Refresh");
             storedToken.updateToken(newRefreshToken);
             refreshTokenRepository.save(storedToken);
         }
@@ -198,8 +220,9 @@ public void signOut(HttpServletRequest request) {
         }
 
         String email = jwtTokenProvider.getEmailFromToken(token);
+        SignInType signInType = jwtTokenProvider.getSignInTypeFromToken(token);
 
-        refreshTokenRepository.findRefreshTokenByEmail(email)
+        refreshTokenRepository.findRefreshTokenByEmailAndSignInType(email, signInType)
                 .ifPresent(refreshTokenRepository::delete);
     }
 
@@ -212,9 +235,9 @@ public void signOut(HttpServletRequest request) {
     public KakaoExistenceResponse validateKakaoUserExists(PostEmailRequest request) {
         String email = request.getEmail();
 
-        Optional<User> optionalUser = userRepository.findByEmail(email);
+        Optional<User> optionalUser = userRepository.findByEmailAndSignInType(email, SignInType.KAKAO);
 
-        if (optionalUser.isPresent() && optionalUser.get().getSignInType() == SignInType.KAKAO) {
+        if (optionalUser.isPresent() && optionalUser.get().getSignInType().equals(SignInType.KAKAO)) {
             return KakaoExistenceResponse.from(true);
         }
 
@@ -231,45 +254,26 @@ public void removeUser(Long userId) {
         User user = userRepository.findById(userId)
                 .orElseThrow(NotFoundUserException::new);
 
-        refreshTokenRepository.findRefreshTokenByEmail(user.getEmail())
+        refreshTokenRepository.findRefreshTokenByEmailAndSignInType(user.getEmail(), user.getSignInType())
                 .ifPresent(refreshTokenRepository::delete);
 
         userRepository.delete(user);
     }
 
-    /**
-     * 유저 정보를 저장한다.
-     *
-     * @param request
-     * @return
-     * @throws UnsupportedSignInTypeException 지원하지 않는 SignInType을 요청한 경우
-     */
-    private User saveUser(SignUpRequest request) {
-        if (request.getSignInType().equals("EMAIL")) {
-            return signUpByEmail(request);
-        }
-
-        if (request.getSignInType().equals("KAKAO")) {
-            return signUpByKakao(request);
-        }
-
-        throw new UnsupportedSignInTypeException();
-    }
-
     /**
      * Kakao 유저를 저장한다.
      *
-     * @param request
+     * @param email
      * @return
      */
-    private User signUpByKakao(SignUpRequest request) {
-        Optional<User> optionalUser = userRepository.findByEmail(request.getEmail());
+    private User signUpByKakao(String email) {
+        Optional<User> optionalUser = userRepository.findByEmailAndSignInType(email, SignInType.KAKAO);
         if (optionalUser.isPresent() && optionalUser.get().getSignInType() == SignInType.KAKAO) {
             throw new DuplicateEmailException();
         }
 
         User user = User.builder()
-                .email(request.getEmail())
+                .email(email)
                 .signInType(SignInType.KAKAO)
                 .build();
 
@@ -279,19 +283,20 @@ private User signUpByKakao(SignUpRequest request) {
     /**
      * Email 유저를 저장한다.
      *
-     * @param request
+     * @param email
+     * @param password
      * @return
      */
-    private User signUpByEmail(SignUpRequest request) {
-        Optional<User> optionalUser = userRepository.findByEmail(request.getEmail());
+    private User signUpByEmail(String email, String password) {
+        Optional<User> optionalUser = userRepository.findByEmailAndSignInType(email, SignInType.EMAIL);
         if (optionalUser.isPresent() && optionalUser.get().getSignInType() == SignInType.EMAIL) {
             throw new DuplicateEmailException();
         }
 
-        String encodedPassword = passwordEncoder.encode(request.getPassword());
+        String encodedPassword = passwordEncoder.encode(password);
 
         User user = User.builder()
-                .email(request.getEmail())
+                .email(email)
                 .password(encodedPassword)
                 .signInType(SignInType.EMAIL)
                 .build();

src/main/java/com/ourmenu/backend/domain/user/dao/RefreshTokenRepository.java

@@ -1,13 +1,14 @@
 package com.ourmenu.backend.domain.user.dao;
 
 import com.ourmenu.backend.domain.user.domain.RefreshToken;
+import com.ourmenu.backend.domain.user.domain.SignInType;
 import org.springframework.data.repository.CrudRepository;
 
 import java.util.Optional;
 
 
 public interface RefreshTokenRepository extends CrudRepository<RefreshToken, String> {
 
-    Optional<RefreshToken> findRefreshTokenByEmail(String email);
+    Optional<RefreshToken> findRefreshTokenByEmailAndSignInType(String email, SignInType signInType);
 
 }

src/main/java/com/ourmenu/backend/domain/user/dao/UserRepository.java

@@ -1,10 +1,11 @@
 package com.ourmenu.backend.domain.user.dao;
 
+import com.ourmenu.backend.domain.user.domain.SignInType;
 import com.ourmenu.backend.domain.user.domain.User;
 import org.springframework.data.jpa.repository.JpaRepository;
 
 import java.util.Optional;
 
 public interface UserRepository extends JpaRepository<User, Long> {
-    Optional<User> findByEmail(String email);
+    Optional<User> findByEmailAndSignInType(String email, SignInType signInType);
 }

src/main/java/com/ourmenu/backend/domain/user/domain/RefreshToken.java

@@ -19,9 +19,13 @@ public class RefreshToken {
     @Indexed
     private String email;
 
-    public RefreshToken(String token, String email) {
+    @Indexed
+    private SignInType signInType;
+
+    public RefreshToken(String token, String email, SignInType signInType) {
         this.refreshToken = token;
         this.email = email;
+        this.signInType = signInType;
     }
 
     public RefreshToken updateToken(String token) {

src/main/java/com/ourmenu/backend/domain/user/domain/SignInType.java

@@ -1,5 +1,15 @@
 package com.ourmenu.backend.domain.user.domain;
 
+import com.ourmenu.backend.domain.user.exception.UnsupportedSignInTypeException;
+
 public enum SignInType {
-    EMAIL, KAKAO
+    EMAIL, KAKAO;
+
+    public static SignInType convert(String signInType) {
+        try {
+            return SignInType.valueOf(signInType);
+        } catch (IllegalArgumentException e) {
+            throw new UnsupportedSignInTypeException();
+        }
+    }
 }

src/main/java/com/ourmenu/backend/domain/user/dto/response/ReissueRequest.java

@@ -3,8 +3,10 @@
 import jakarta.validation.constraints.NotBlank;
 import lombok.AllArgsConstructor;
 import lombok.Getter;
+import lombok.NoArgsConstructor;
 
 @Getter
+@NoArgsConstructor
 @AllArgsConstructor
 public class ReissueRequest {
 

src/main/java/com/ourmenu/backend/global/filter/JwtAuthenticationFilter.java

@@ -1,6 +1,7 @@
 package com.ourmenu.backend.global.filter;
 
 
+import com.ourmenu.backend.domain.user.domain.SignInType;
 import com.ourmenu.backend.global.util.JwtTokenProvider;
 import jakarta.servlet.FilterChain;
 import jakarta.servlet.ServletException;
@@ -27,25 +28,29 @@ protected void doFilterInternal(HttpServletRequest request, HttpServletResponse
         String refreshToken = jwtTokenProvider.getHeaderToken(request, "Refresh_token");
 
         if(accessToken != null && jwtTokenProvider.validateToken(accessToken)) {
-            setAuthentication(jwtTokenProvider.getEmailFromToken(accessToken));
+            setAuthentication(
+                    jwtTokenProvider.getEmailFromToken(accessToken),
+                    jwtTokenProvider.getSignInTypeFromToken(accessToken)
+            );
             filterChain.doFilter(request,response);
             return;
         }
 
         if (refreshToken != null && jwtTokenProvider.refreshTokenValidation(refreshToken)) {
             String email = jwtTokenProvider.getEmailFromToken(refreshToken);
-            String newAccessToken = jwtTokenProvider.createToken(email, "Access");
+            SignInType signInType = jwtTokenProvider.getSignInTypeFromToken(refreshToken);
+            String newAccessToken = jwtTokenProvider.createToken(email, signInType, "Access");
             jwtTokenProvider.setHeaderAccessToken(response, newAccessToken);
-            setAuthentication(jwtTokenProvider.getEmailFromToken(newAccessToken));
+            setAuthentication(jwtTokenProvider.getEmailFromToken(newAccessToken), signInType);
             filterChain.doFilter(request,response);
             return;
         }
 
         filterChain.doFilter(request,response);
     }
 
-    public void setAuthentication(String email) {
-        Authentication authentication = jwtTokenProvider.createAuthentication(email);
+    public void setAuthentication(String email, SignInType signInType) {
+        Authentication authentication = jwtTokenProvider.createAuthentication(email, signInType);
         SecurityContextHolder.getContext().setAuthentication(authentication);
     }