[Spring MVC(인증)] 정원영 미션 제출합니다.

src/main/java/roomescape/auth/AuthController.java

@@ -0,0 +1,43 @@
+package roomescape.auth;
+
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.CookieValue;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+
+@Controller
+public class AuthController {
+
+    private static final String ACCESS_TOKEN_NAME = "token";
+
+    private final AuthService authService;
+
+    public AuthController(AuthService authService) {
+        this.authService = authService;
+    }
+
+    @PostMapping("/login")
+    public ResponseEntity login(@RequestBody LoginRequest loginRequest, HttpServletResponse response) {
+        String token = authService.loginWithEmailAndPassword(loginRequest.email(), loginRequest.password());
+        addCookie(response, ACCESS_TOKEN_NAME, token);
+
+        return ResponseEntity.ok().build();
+    }
+
+    @GetMapping("/login/check")
+    public ResponseEntity loginCheck(@CookieValue(ACCESS_TOKEN_NAME) String accessToken) {
+        return ResponseEntity.ok().body(authService.loginCheckWithToken(accessToken));
+    }
+
+    private void addCookie(HttpServletResponse response, String cookieName, String cookieValue) {
+        Cookie cookie = new Cookie(cookieName, cookieValue);
+        cookie.setHttpOnly(true);
+        cookie.setPath("/");
+        response.addCookie(cookie);
+    }
+}

src/main/java/roomescape/auth/AuthService.java

@@ -0,0 +1,40 @@
+package roomescape.auth;
+
+import org.springframework.stereotype.Service;
+import roomescape.auth.jwt.MemberTokenDto;
+import roomescape.auth.jwt.TokenService;
+import roomescape.member.Member;
+import roomescape.member.MemberDao;
+
+@Service
+public class AuthService {
+
+    private final MemberDao memberDao;
+    private final TokenService tokenService;
+
+    public AuthService(MemberDao memberDao, TokenService tokenService) {
+        this.memberDao = memberDao;
+        this.tokenService = tokenService;
+    }
+
+    public String loginWithEmailAndPassword(String email, String password) {
+        Member member = memberDao.findByEmailAndPassword(email, password);
+
+        if(member == null) {
+            throw new IllegalArgumentException("잘못된 이메일 또는 비밀번호입니다.");
+        }
+
+        return tokenService.createToken(
+                new MemberTokenDto(member.getId(), member.getName(), member.getEmail(), member.getRole()));
+    }
+
+    public MemberDetailResponse loginCheckWithToken(String token) {
+        //유효기간 확인을 위해 필요
+        if (!tokenService.checkValidToken(token)) {
+            throw new IllegalArgumentException("잘못된 토큰입니다.");
+        }
+
+        MemberTokenDto member = tokenService.getMemberClaims(token);
+        return new MemberDetailResponse(member.id(), member.name(), member.email(), member.role());
+    }
+}

src/main/java/roomescape/auth/LoginRequest.java

@@ -0,0 +1,7 @@
+package roomescape.auth;
+
+public record LoginRequest(
+        String email,
+        String password
+) {
+}

src/main/java/roomescape/auth/MemberDetailResponse.java

@@ -0,0 +1,9 @@
+package roomescape.auth;
+
+public record MemberDetailResponse(
+        Long id,
+        String name,
+        String email,
+        String role
+) {
+}

src/main/java/roomescape/auth/jwt/MemberTokenDto.java

@@ -0,0 +1,9 @@
+package roomescape.auth.jwt;
+
+public record MemberTokenDto(
+        Long id,
+        String name,
+        String email,
+        String role
+) {
+}

src/main/java/roomescape/auth/jwt/TokenService.java

@@ -0,0 +1,77 @@
+package roomescape.auth.jwt;
+
+import io.jsonwebtoken.Claims;
+import io.jsonwebtoken.Jws;
+import io.jsonwebtoken.JwtException;
+import io.jsonwebtoken.Jwts;
+import io.jsonwebtoken.security.Keys;
+import jakarta.annotation.PostConstruct;
+import java.security.Key;
+import java.util.Date;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Service;
+
+@Service
+public class TokenService {
+
+    private static final String NAME_CLAIM = "name";
+    private static final String EMAIL_CLAIM = "email";
+    private static final String ROLE_CLAIM = "role";
+
+    private final String secretKey;
+    private final long expiration;
+    private Key key;
+
+    public TokenService(@Value("${roomescape.auth.jwt.secret}") String secretKey,
+                        @Value("${roomescape.auth.jwt.expiration}") long expiration) {
+        this.secretKey = secretKey;
+        this.expiration = expiration;
+    }
+
+    @PostConstruct
+    public void init() {
+        key = Keys.hmacShaKeyFor(secretKey.getBytes());
+    }
+
+    public String createToken(MemberTokenDto memberTokenDto) {
+        return Jwts.builder()
+                .setSubject(memberTokenDto.id().toString())
+                .claim(NAME_CLAIM, memberTokenDto.name())
+                .claim(EMAIL_CLAIM, memberTokenDto.email())
+                .claim(ROLE_CLAIM, memberTokenDto.role())
+                .setExpiration(new Date(System.currentTimeMillis() + expiration))
+                .signWith(key)
+                .compact();
+    }
+
+    public boolean checkValidToken(String token) {
+        try {
+            Jws<Claims> claims = Jwts.parserBuilder()
+                    .setSigningKey(key)
+                    .build()
+                    .parseClaimsJws(token);
+
+            return claims.getBody().getExpiration().after(new Date());
+        } catch (JwtException | IllegalArgumentException e) {
+            return false;
+        }
+    }
+
+    public MemberTokenDto getMemberClaims(String token) {
+        try {
+            Claims claims = Jwts.parserBuilder()
+                    .setSigningKey(key)
+                    .build()
+                    .parseClaimsJws(token)
+                    .getBody();
+
+            return new MemberTokenDto(
+                    Long.valueOf(claims.getSubject()),
+                    claims.get(NAME_CLAIM).toString(),
+                    claims.get(EMAIL_CLAIM).toString(),
+                    claims.get(ROLE_CLAIM).toString());
+        } catch (JwtException | IllegalArgumentException e) {
+            throw new IllegalArgumentException("잘못된 토큰입니다.");
+        }
+    }
+}