Merge pull request #138 from prgrms-web-devcourse-final-project/feat/#124

[User] 유저 프로필 이미지 AWS S3 활용한 업로드 처리

Author: Creamcheesepie

.github/workflows/ci.yml

@@ -42,6 +42,10 @@ jobs:
       GOOGLE_CLIENT_SECRET: ${{ secrets.GOOGLE_CLIENT_SECRET }}
       GOOGLE_REDIRECT_URI: ${{ secrets.GOOGLE_REDIRECT_URI }}
 
+      AWS_ACCESS_KEY: ${{ secrets.AWS_ACCESS_KEY_ID }}
+      AWS_SECRET_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+      AWS_S3_BUCKET_NAME: ${{ secrets.AWS_S3_BUCKET_NAME }}
+
     steps:
       - name: Checkout
         uses: actions/checkout@v4

build.gradle.kts

@@ -74,6 +74,11 @@ dependencies {
     // Spotify
     implementation("se.michaelthelin.spotify:spotify-web-api-java:8.4.1")
 
+    // AWS S3
+    implementation("software.amazon.awssdk:s3")
+    implementation("io.awspring.cloud:spring-cloud-aws-s3:3.0.2")
+    
+    // 서버 정상 작동 확인용
     implementation("org.springframework.boot:spring-boot-starter-actuator")
 }
 

src/main/java/com/back/web7_9_codecrete_be/domain/users/controller/UserController.java

@@ -12,6 +12,7 @@
 import io.swagger.v3.oas.annotations.tags.Tag;
 import jakarta.validation.Valid;
 import lombok.RequiredArgsConstructor;
+import org.springframework.http.MediaType;
 import org.springframework.web.bind.annotation.*;
 import org.springframework.web.multipart.MultipartFile;
 
@@ -42,10 +43,10 @@ public RsData<?> updateNickname(
         return RsData.success("사용자 닉네임 변경 완료", response);
     }
 
-    @Operation(summary = "내 프로필 이미지 수정", description = "프로필 이미지를 수정합니다.")
-    @PatchMapping("/profile-image")
+    @Operation(summary = "내 프로필 이미지 수정", description = "프로필 이미지를 multipart/form-data 형식으로 업로드하여 수정합니다.")
+    @PatchMapping(value = "/profile-image", consumes = MediaType.MULTIPART_FORM_DATA_VALUE)
     public RsData<?> updateProfileImage(
-            @RequestPart MultipartFile file
+            @RequestPart("file") MultipartFile file
     ) {
         User user = rq.getUser();
         String imageUrl = userService.updateProfileImage(user, file);
@@ -62,7 +63,6 @@ public RsData<?> updatePassword(
         return RsData.success("비밀번호가 변경되었습니다.");
     }
 
-
     @Operation(summary = "회원 탈퇴", description = "현재 로그인된 사용자를 탈퇴 처리합니다.")
     @DeleteMapping("/me")
     public RsData<?> deleteMyAccount() {

src/main/java/com/back/web7_9_codecrete_be/domain/users/dto/response/UserResponse.java

@@ -13,6 +13,7 @@ public class UserResponse {
     private String email;
     private String nickname;
     private LocalDate birthdate;
+    private String profileImageUrl;
     private String status;
 
     public static UserResponse from(User user) {
@@ -21,6 +22,7 @@ public static UserResponse from(User user) {
                 .email(user.getEmail())
                 .nickname(user.getNickname())
                 .birthdate(user.getBirth())
+                .profileImageUrl(user.getProfileImage())
                 .status(user.getStatus().name())
                 .build();
     }

src/main/java/com/back/web7_9_codecrete_be/domain/users/service/UserService.java

@@ -13,6 +13,7 @@
 import com.back.web7_9_codecrete_be.global.error.exception.BusinessException;
 import com.back.web7_9_codecrete_be.global.storage.FileStorageService;
 import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.security.crypto.password.PasswordEncoder;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
@@ -21,6 +22,7 @@
 import java.time.LocalDateTime;
 import java.util.UUID;
 
+@Slf4j
 @Service
 @RequiredArgsConstructor
 @Transactional
@@ -32,6 +34,8 @@ public class UserService {
     private final UserRestoreTokenRedisRepository userRestoreTokenRedisRepository;
     private final EmailService emailService;
 
+    private static final long MAX_PROFILE_IMAGE_SIZE = 10 * 1024 * 1024; // 10MB
+
     // 내 정보 조회
     @Transactional(readOnly = true)
     public UserResponse getMyInfo(User user) {
@@ -75,14 +79,39 @@ public String updateProfileImage(User user, MultipartFile file) {
             throw new BusinessException(UserErrorCode.INVALID_PROFILE_IMAGE);
         }
 
-        String imageUrl = fileStorageService.upload(file);
+        if (file.getSize() > MAX_PROFILE_IMAGE_SIZE) {
+            throw new BusinessException(UserErrorCode.PROFILE_IMAGE_SIZE_EXCEEDED);
+        }
+
+        // 기존 이미지 URL 보관
+        String oldImageUrl = user.getProfileImage();
+
+        // 새 이미지 업로드
+        String newImageUrl = fileStorageService.upload(file, "users/profile");
 
-        user.updateProfileImage(imageUrl);
+        // DB 업데이트
+        user.updateProfileImage(newImageUrl);
         userRepository.save(user);
 
-        return imageUrl;
+        // 기존 이미지 즉시 삭제
+        // TODO: 추후 지연 삭제 스케줄러로 리팩토링
+        if (oldImageUrl != null) {
+            try {
+                fileStorageService.delete(oldImageUrl);
+            } catch (Exception e) {
+                log.warn(
+                        "기존 프로필 이미지 삭제 실패 userId={}, url={}",
+                        user.getId(),
+                        oldImageUrl,
+                        e
+                );
+            }
+        }
+
+        return newImageUrl;
     }
 
+
     // 활성 사용자 검증
     private void validateActiveUser(User user) {
         if (user.getIsDeleted()) {

src/main/java/com/back/web7_9_codecrete_be/global/config/S3Config.java

@@ -0,0 +1,35 @@
+package com.back.web7_9_codecrete_be.global.config;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import software.amazon.awssdk.auth.credentials.AwsBasicCredentials;
+import software.amazon.awssdk.auth.credentials.StaticCredentialsProvider;
+import software.amazon.awssdk.regions.Region;
+import software.amazon.awssdk.services.s3.S3Client;
+
+@Configuration
+public class S3Config {
+
+    @Value("${cloud.aws.credentials.access-key}")
+    private String accessKey;
+
+    @Value("${cloud.aws.credentials.secret-key}")
+    private String secretKey;
+
+    @Value("${cloud.aws.region.static}")
+    private String region;
+
+    @Bean
+    public S3Client s3Client() {
+        return S3Client.builder()
+                // 지역 설정
+                .region(Region.of(region))
+                // 자격 증명자 설정
+                .credentialsProvider(StaticCredentialsProvider.create(
+                        // accessKey와 secretKey로 자격 증명 생성
+                        AwsBasicCredentials.create(accessKey,secretKey)
+                ))
+                .build();
+    }
+}

src/main/java/com/back/web7_9_codecrete_be/global/error/code/UserErrorCode.java

@@ -18,6 +18,7 @@ public enum UserErrorCode implements ErrorCode {
 
     // 3xx - 입력값 / 파일
     INVALID_PROFILE_IMAGE(HttpStatus.BAD_REQUEST, "U-110", "유효하지 않은 프로필 이미지입니다."),
+    PROFILE_IMAGE_SIZE_EXCEEDED(HttpStatus.BAD_REQUEST, "U-111", "프로필 이미지 크기가 10MB를 초과했습니다."),
 
     // 2xx - 인증 / 비밀번호
     INVALID_PASSWORD(HttpStatus.BAD_REQUEST, "U-120", "현재 비밀번호가 일치하지 않습니다.");

src/main/java/com/back/web7_9_codecrete_be/global/security/SecurityConfig.java

@@ -57,15 +57,13 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
 					"/h2-console/**",       // H2 Console
 					"/api/v1/location/**",      //location 정보 조회 도메인(임시)
 					"/api/v1/concerts/**",     // concert 정보 조회 도메인
-					"/api/v1/artists/**"    // artist 정보 저장 도메인(임시)
+					"/api/v1/artists/**",    // artist 정보 저장 도메인(임시)
+          			"/api/v1/users/**"
 				).permitAll()
 
 				// ADMIN 전용
 				.requestMatchers("/api/v1/admin/**").hasRole("ADMIN")
 
-				// USER, ADMIN 허용
-				.requestMatchers("/api/v1/users/**").hasAnyRole("USER", "ADMIN")
-
 				.anyRequest().authenticated()
 			)
 

src/main/java/com/back/web7_9_codecrete_be/global/storage/FileStorageService.java

@@ -3,6 +3,9 @@
 import org.springframework.web.multipart.MultipartFile;
 
 public interface FileStorageService {
-    //임시 구현
-    String upload(MultipartFile file);
+
+    // 파일 업로드 메서드
+    String upload(MultipartFile file, String basePath);
+
+    void delete(String fileUrl);
 }

src/main/java/com/back/web7_9_codecrete_be/global/storage/S3FileStorageService.java

@@ -1,18 +1,71 @@
 package com.back.web7_9_codecrete_be.global.storage;
 
+import lombok.RequiredArgsConstructor;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Service;
 import org.springframework.web.multipart.MultipartFile;
+import software.amazon.awssdk.core.sync.RequestBody;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.model.PutObjectRequest;
 
+import java.io.IOException;
 import java.util.UUID;
 
 @Service
+@RequiredArgsConstructor
 public class S3FileStorageService implements FileStorageService {
+
+    private final S3Client s3Client;
+
+    @Value("${cloud.aws.s3.bucket}")
+    private String bucket;
+
+    @Value("${cloud.aws.region.static}")
+    private String region;
+
+    // 공용 업로드 메서드
+    @Override
+    public String upload(MultipartFile file, String basePath) {
+
+        String fileName = UUID.randomUUID() + "_" + file.getOriginalFilename();
+        String key = basePath + "/" + fileName;
+
+        try {
+            PutObjectRequest putObjectRequest = PutObjectRequest.builder()
+                    .bucket(bucket)
+                    .key(key)
+                    .contentType(file.getContentType())
+                    .build();
+
+            s3Client.putObject(
+                    putObjectRequest,
+                    RequestBody.fromInputStream(file.getInputStream(), file.getSize())
+            );
+
+        } catch (IOException e) {
+            throw new RuntimeException("S3 파일 업로드 실패", e);
+        }
+
+        return "https://" + bucket + ".s3." + region + ".amazonaws.com/" + key;
+    }
+
     @Override
-    public String upload(MultipartFile file) {
+    public void delete(String fileUrl) {
+
+        if (fileUrl == null || fileUrl.isBlank()) {
+            return;
+        }
+
+        String prefix = "https://" + bucket + ".s3." + region + ".amazonaws.com/";
+        if (!fileUrl.startsWith(prefix)) {
+            throw new IllegalArgumentException("잘못된 S3 파일 URL입니다.");
+        }
 
-        // 임시 URL 생성
-        String fakeFileName = UUID.randomUUID() + "_" + file.getOriginalFilename();
+        String key = fileUrl.substring(prefix.length());
 
-        return "https://dummy-cdn.codecrete.com/profile/" + fakeFileName;
+        s3Client.deleteObject(builder -> builder
+                .bucket(bucket)
+                .key(key)
+        );
     }
 }