Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature/#41 깃허브 로그인 기능 구현 #50

Merged
merged 29 commits into from
Jul 24, 2023
Merged

Feature/#41 깃허브 로그인 기능 구현 #50

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
29 commits
Select commit Hold shift + click to select a range
ba1c7c3
chore: 깃허브 로그인 변수 포맷 추가
hyeonjerry Jul 18, 2023
2f33d70
feat: 깃허브 accessToken 요청 클라이언트 구현
hyeonjerry Jul 18, 2023
8c528a6
feat: 깃허브 프로필 요청 클라이언트 구현
hyeonjerry Jul 18, 2023
52eb783
feat: github code로부터 사용자 토큰 반환 기능 구현
hyeonjerry Jul 18, 2023
1f9b17c
feat: github 로그인 redirect api 구현
hyeonjerry Jul 18, 2023
9d99baf
Merge branch 'main' of https://github.com/woowacourse-teams/2023-emms…
hyeonjerry Jul 18, 2023
d1cd05c
fix: ServiceIntegrationTestHelper 추가
hyeonjerry Jul 19, 2023
85e3454
refactor: 커스텀 예외 추가
hyeonjerry Jul 19, 2023
eff599f
test: 로그인 서비스 테스트 구현
hyeonjerry Jul 19, 2023
1a101cb
chore: jwt 라이브러리 추가
hyeonjerry Jul 19, 2023
bb1b348
feat: 토큰 생성 및 발급 기능 구현
hyeonjerry Jul 19, 2023
5422e89
feat: 새로운 유저 여부 정보 추가
hyeonjerry Jul 19, 2023
38a1afb
refactor: JwtTokenProvider 패키지 이동
hyeonjerry Jul 20, 2023
4701ddb
feat: JwtTokenProvider Subject 추출 기능 구현
hyeonjerry Jul 20, 2023
6179009
feat: Authorization 헤더 추출 기능 구현
hyeonjerry Jul 20, 2023
7a7b853
feat: ArgumentResolver에 TokenProvider 등록
hyeonjerry Jul 20, 2023
5abbf9b
test: TokenProvider 테스트 구현
hyeonjerry Jul 20, 2023
28f71c0
refactor: 불필요한 코드 제거
hyeonjerry Jul 20, 2023
feeab0e
refactor: Custom 예외 추가
hyeonjerry Jul 20, 2023
e7f913d
refactor: 피드백 반영
hyeonjerry Jul 22, 2023
da1decf
refactor: 패키지 및 클래스명 변경
hyeonjerry Jul 22, 2023
0cd66d0
test: 불필요한 검증 제거
hyeonjerry Jul 22, 2023
c79cb57
fix: default 생성자 오류 수정
hyeonjerry Jul 22, 2023
39c97a4
feat: githubId 컬럼 추가
hyeonjerry Jul 22, 2023
c003c2a
feat: githubId로 사용자를 조회하는 기능 구현
hyeonjerry Jul 22, 2023
4d99f76
refactor: Authorization 추출 메서드 리팩터링
hyeonjerry Jul 22, 2023
1cc219d
refactor: 메서드 추출 및 예외처리 추가
hyeonjerry Jul 22, 2023
b52fc15
refactor: 패키지면 변경
hyeonjerry Jul 23, 2023
fac42f4
refactor: MemberOnly 어노테이션 제거
hyeonjerry Jul 24, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
49 changes: 49 additions & 0 deletions backend/emm-sale/src/main/java/com/emmsale/login/application/GithubClient.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
package com.emmsale.login.application;
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

패키지 상으로도 그렇고 기능적으로도 Service에 해당하는 것 같은데 클래스명을 GithubClientService가 아니라 GithubClient로 지어주신 이유가 있을까요??

제가 OAuth쪽은 익숙하지 않아서 잘 모르는 것일 수도 있습니다...!

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

컨트롤러의 요청을 받아 도메인 로직을 실행하고 이것을 반환하는 것이 아니므로 서비스라고 짓지 않았습니다.


import com.emmsale.login.application.dto.GithubAccessTokenRequest;
import com.emmsale.login.application.dto.GithubAccessTokenResponse;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.http.HttpEntity;
import org.springframework.http.HttpHeaders;
import org.springframework.http.HttpMethod;
import org.springframework.http.MediaType;
import org.springframework.stereotype.Component;
import org.springframework.web.client.RestTemplate;

@Component
public class GithubClient {

@Value("${github.client.id}")
private String clientId;
@Value("${github.client.secret}")
private String clientSecret;
@Value("${github.url.access-token}")
private String accessTokenUrl;
@Value("${github.url.profile}")
private String profileUrl;

public String getAccessTokenFromGithub(final String code) {
final GithubAccessTokenRequest githubAccessTokenRequest = new GithubAccessTokenRequest(
code,
clientId,
clientSecret
);

final HttpHeaders headers = new HttpHeaders();
headers.add("Accept", MediaType.APPLICATION_JSON_VALUE);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

상수는 따로 빼주거나, 아니면 spring 이 제공해주는 HttpHeaders.ACCEPT 를 사용해보시는건 어떠신가요?


final HttpEntity httpEntity = new HttpEntity(githubAccessTokenRequest, headers);
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

HttpEntity를 row 타입으로 사용하고 있는데 이유가 있으실까요?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

다른 코드를 참고하며 작성하다 보니 놓친 것 같습니다.
raw 타입을 사용할 경우 타입 안정성이 떨어질 뿐만 아니라 슈퍼 클래스의 메서드들도 모두 지워져서 GithubAccessTokenRequest 클래스의 메서드 또한 사용할 수 없는 문제가 발생하네요!!

HttpEntity<GithubAccessTokenRequest> httpEntity;
httpEntity.getBody().getClientId(); // O

HttpEntity httpEntity;
httpEntity.getBody().getClientId(); // Cannot resolve method 'getClientId' in 'Object'

final RestTemplate restTemplate = new RestTemplate();
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

RestTemplate 객체를 싱글톤으로 관리해보시는건 어떠신가요? 반복적으로 사용되는 것 같아서요~


final String accessToken = restTemplate
.exchange(accessTokenUrl, HttpMethod.POST, httpEntity, GithubAccessTokenResponse.class)
.getBody()
.getAccessToken();
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

제가 잘 몰라서 그러는데 get함과 동시에 accessToken이 존재하지 않는다면 바로 NPE가 발생하나요??

Method invocation 'getAccessToken' may produce 'NullPointerException' 인텔리제이에서 이런 문구가 보여서요

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

final String accessToken = REST_TEMPLATE
    .exchange(accessTokenUrl, HttpMethod.POST, httpEntity, GithubAccessTokenResponse.class)
    .getBody()
    .getAccessToken();

위 코드에서 .exchange() 메서드의 내부를 보면 return nonNull(execute(...));을 반환하고 있습니다.
여기서 nonNull() 메서드를 보면 Assert.state(result != null, "No result");를 통해 resultnull일 경우 에러를 발생시킵니다.
따라서, .getBody().getAccessToken()을 했을 때 NPE가 발생할 일은 없을 것 같습니다!!

RestTemplate과 동일한 라이브러리는 아니지만 유사항 사례가 있어 참고로 남깁니다.
Method invocation may produce NullPointerException Retrofit Body


if (accessToken == null) {
//TODO: 커스텀 예외 정의
throw new IllegalArgumentException("code가 유효하지 않습니다.");
}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

유효성 검사 부분은 메서드로 추출해주는 편이 가독성에 더 좋을 것 같습니다!

return accessToken;
}
}
16 changes: 16 additions & 0 deletions ...nd/emm-sale/src/main/java/com/emmsale/login/application/dto/GithubAccessTokenRequest.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
package com.emmsale.login.application.dto;

import com.fasterxml.jackson.annotation.JsonProperty;
import lombok.AllArgsConstructor;
import lombok.Getter;

@AllArgsConstructor
@Getter
public class GithubAccessTokenRequest {

private final String code;
@JsonProperty("client_id")
private final String clientId;
@JsonProperty("client_secret")
private final String clientSecret;
}
20 changes: 20 additions & 0 deletions ...d/emm-sale/src/main/java/com/emmsale/login/application/dto/GithubAccessTokenResponse.java
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
package com.emmsale.login.application.dto;

import com.fasterxml.jackson.annotation.JsonProperty;
import lombok.AccessLevel;
import lombok.AllArgsConstructor;
import lombok.Getter;
import lombok.NoArgsConstructor;

@AllArgsConstructor
@NoArgsConstructor(access = AccessLevel.PROTECTED)
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

혹시 NoArgsCounstructor를 PROTECTED로 추가하신 이유가 있을까요?

@Getter
public class GithubAccessTokenResponse {

@JsonProperty("access_token")
private String accessToken;
@JsonProperty("token_type")
private String tokenType;
private String scope;
private String bearer;
}