Merge pull request #158 from EAT-SSU/refactor/token_reissue

[HotFix&Refactor/#155 #75] 토큰 재발급 이슈 해결
EAT-SSU · Mar 28, 2024 · bb5fcbb · bb5fcbb
2 parents bd7af55 + 21b7aa9
commit bb5fcbb
Show file tree

Hide file tree

Showing 16 changed files with 300 additions and 226 deletions.
diff --git a/.idea/misc.xml b/.idea/misc.xml
diff --git a/app/build.gradle b/app/build.gradle
@@ -22,8 +22,8 @@ android {
         minSdk 23
         compileSdkVersion 34
         targetSdk 34
-        versionCode 9
-        versionName "1.1.7"
+        versionCode 10
+        versionName "1.1.8"
 
 
         buildConfigField "String", "BASE_URL", properties["BASE_URL"]

diff --git a/app/src/main/java/com/eatssu/android/data/usecase/GetMyReviewsUseCase.kt b/app/src/main/java/com/eatssu/android/data/usecase/GetMyReviewsUseCase.kt
@@ -0,0 +1,14 @@
+package com.eatssu.android.data.usecase
+
+import com.eatssu.android.base.BaseResponse
+import com.eatssu.android.data.dto.response.MyReviewResponse
+import com.eatssu.android.data.repository.UserRepository
+import kotlinx.coroutines.flow.Flow
+import javax.inject.Inject
+
+class GetMyReviewsUseCase @Inject constructor(
+    private val userRepository: UserRepository,
+) {
+    suspend operator fun invoke(): Flow<BaseResponse<MyReviewResponse>> =
+        userRepository.getUserReviews()
+}
diff --git a/app/src/main/java/com/eatssu/android/data/usecase/SignOutUseCase.kt b/app/src/main/java/com/eatssu/android/data/usecase/SignOutUseCase.kt
@@ -1,18 +1,13 @@
 package com.eatssu.android.data.usecase
 
-import com.eatssu.android.App
 import com.eatssu.android.base.BaseResponse
 import com.eatssu.android.data.repository.UserRepository
-import com.eatssu.android.util.MySharedPreferences
 import kotlinx.coroutines.flow.Flow
 import javax.inject.Inject
 
 class SignOutUseCase @Inject constructor(
     private val userRepository: UserRepository,
 ) {
-    suspend operator fun invoke(): Flow<BaseResponse<Boolean>> {
-        MySharedPreferences.clearUser(App.appContext)
-
-        return userRepository.signOut()
-    }
-}
+    suspend operator fun invoke(): Flow<BaseResponse<Boolean>> =
+        userRepository.signOut()
+}
diff --git a/app/src/main/java/com/eatssu/android/di/NetworkModule.kt b/app/src/main/java/com/eatssu/android/di/NetworkModule.kt
@@ -71,99 +71,4 @@ object NetworkModule {
     fun provideUserService(retrofit: Retrofit): UserService {
         return retrofit.create(UserService::class.java)
     }
-
-    /*
-
-    @Qualifier
-    @Retention(AnnotationRetention.BINARY)
-    annotation class AuthClient
-
-    @Qualifier
-    @Retention(AnnotationRetention.BINARY)
-    annotation class MultiClient
-
-    @Provides
-    @Singleton
-    fun provideGsonConverterFactory(): GsonConverterFactory {
-        return GsonConverterFactory.create()
-    }
-
-    @Provides
-    @Singleton
-    fun provideHttpLoggingInterceptor(): HttpLoggingInterceptor {
-        return HttpLoggingInterceptor().apply {
-            level = HttpLoggingInterceptor.Level.BODY
-        }
-    }
-
-
-    @Provides
-    @Singleton
-    fun provideAppInterceptor(): AppInterceptor {
-        return AppInterceptor(App.appContext)
-    }
-
-    @Singleton
-    @Provides
-    fun provideClient(//일반
-//        authorizationInterceptor: Interceptor,
-//        tokenAuthenticator: Authenticator,
-//        cacheInterceptor: CacheInterceptor
-        appInterceptor: AppInterceptor
-    ): OkHttpClient {
-        val builder = OkHttpClient.Builder()
-        val loggingInterceptor = HttpLoggingInterceptor()
-        loggingInterceptor.level = HttpLoggingInterceptor.Level.BODY
-        builder.apply {
-            addInterceptor(loggingInterceptor)
-            addInterceptor(appInterceptor)
-
-//            addInterceptor(cacheInterceptor)
-//            addInterceptor(authorizationInterceptor)
-        }
-//        builder.authenticator(tokenAuthenticator)
-        return builder.build()
-    }
-
-    @AuthClient
-    @Singleton
-    @Provides
-    fun provideAuthClient( //이게 토큰 없는거
-//        authorizationInterceptor: Interceptor,
-        appInterceptor: AppInterceptor,
-//        cacheInterceptor: CacheInterceptor
-    ): OkHttpClient {
-        val builder = OkHttpClient.Builder()
-        val loggingInterceptor = HttpLoggingInterceptor()
-        loggingInterceptor.level = HttpLoggingInterceptor.Level.BODY
-        builder.apply {
-            addInterceptor(loggingInterceptor)
-//            addInterceptor(appInterceptor)
-//            addInterceptor(cacheInterceptor)
-//            addInterceptor(authorizationInterceptor)
-        }
-        return builder.build()
-    }
-
-
-    @MultiClient
-    @Singleton
-    @Provides
-    fun provideMultiClient(
-//        authorizationInterceptor: Interceptor,
-        multiAppInterceptor: MultiAppInterceptor,
-//        cacheInterceptor: CacheInterceptor,
-    ): OkHttpClient {
-        val builder = OkHttpClient.Builder()
-        val loggingInterceptor = HttpLoggingInterceptor()
-        loggingInterceptor.level = HttpLoggingInterceptor.Level.BODY
-        builder.apply {
-            addInterceptor(loggingInterceptor)
-            addInterceptor(multiAppInterceptor)
-//            addInterceptor(cacheInterceptor)
-//            addInterceptor(authorizationInterceptor)
-        }
-        return builder.build()
-    }
-*/
 }
diff --git a/app/src/main/java/com/eatssu/android/di/network/TokenInterceptor.kt b/app/src/main/java/com/eatssu/android/di/network/TokenInterceptor.kt
@@ -1,96 +1,146 @@
 package com.eatssu.android.di.network
 
+
 import android.content.Intent
 import android.os.Handler
 import android.os.Looper
 import android.util.Log
 import android.widget.Toast
 import com.eatssu.android.App
+import com.eatssu.android.BuildConfig.BASE_URL
+import com.eatssu.android.base.BaseResponse
+import com.eatssu.android.data.dto.response.TokenResponse
 import com.eatssu.android.data.usecase.GetAccessTokenUseCase
 import com.eatssu.android.data.usecase.GetRefreshTokenUseCase
 import com.eatssu.android.data.usecase.LogoutUseCase
-import com.eatssu.android.data.usecase.ReissueTokenUseCase
+import com.eatssu.android.data.usecase.SetAccessTokenUseCase
+import com.eatssu.android.data.usecase.SetRefreshTokenUseCase
 import com.eatssu.android.ui.login.LoginActivity
+import com.google.gson.Gson
+import com.google.gson.reflect.TypeToken
 import kotlinx.coroutines.runBlocking
 import okhttp3.Interceptor
+import okhttp3.Request
+import okhttp3.RequestBody.Companion.toRequestBody
 import okhttp3.Response
+import java.lang.reflect.Type
 import javax.inject.Inject
 
 class TokenInterceptor @Inject constructor(
     private val getAccessTokenUseCase: GetAccessTokenUseCase,
     private val getRefreshTokenUseCase: GetRefreshTokenUseCase,
+    private val setAccessTokenUseCase: SetAccessTokenUseCase,
+    private val setRefreshTokenUseCase: SetRefreshTokenUseCase,
     private val logoutUseCase: LogoutUseCase,
-    private val reissueTokenUseCase: ReissueTokenUseCase,
 ) : Interceptor {
 
     companion object {
         val EXCEPT_LIST = listOf(
-            "/login/google", "/reissue", "/users",
-            "/",
-
             "/oauths/reissue/token",
             "/oauths/kakao",
-
-            "/oauths/**", "/users/**",
-            "/menus/**", "/meals/**", "/restaurants/**", "/reviews/**",
-
-            "/inquiries/{userInquiriesId}",
-            "/inquiries/list",
-
-            "/admin/login"
         )
 
         const val TAG = "TokenInterceptor"
 
+        private const val CODE_TOKEN_EXPIRED = 401
+        private const val HEADER_AUTHORIZATION = "Authorization"
+        private const val HEADER_ACCESS_TOKEN = "X-ACCESS-AUTH"
+        private const val HEADER_REFRESH_TOKEN = "X-REFRESH-AUTH"
     }
 
+    private lateinit var newAccessToken: String
+    private lateinit var newRefreshToken: String
+
     override fun intercept(chain: Interceptor.Chain): Response {
-        val token = runBlocking { getAccessTokenUseCase() }
+        val accessToken = runBlocking { getAccessTokenUseCase() }
+        val refreshToken = runBlocking { getRefreshTokenUseCase() }
+
         val originalRequest = chain.request()
         val request = chain.request().newBuilder().apply {
             if (EXCEPT_LIST.none { originalRequest.url.encodedPath.endsWith(it) }) {
                 addHeader("accept", "application/hal+json")
                 addHeader("Content-Type", "application/json")
-                addHeader("Authorization", "Bearer $token")
+                addHeader(HEADER_AUTHORIZATION, "Bearer $accessToken")
             }
         }.build()
+
         val response = chain.proceed(request)
+
         if (response.code == 401) {
-//        if (response.code == 401 && !response.request.url.toString().contains("reissue")) {
-            // refresh token
+            Log.d(TAG, "토큰 퉤퉤")
             response.close()
 
-            Log.d(TAG, "토큰 재발급 시도")
             try {
-                val refreshToken = runBlocking { getRefreshTokenUseCase() }
-                val newAccessToken = runBlocking { reissueTokenUseCase(refreshToken) }
-
-                // 재발급 받은 토큰으로 새로운 요청 생성
-                val newRequest = request.newBuilder()
-                    .removeHeader("Authorization")
-                    .addHeader("Authorization", "Bearer $newAccessToken")
+                val refreshTokenRequest = originalRequest.newBuilder()
+                    .post("".toRequestBody())
+                    .url("$BASE_URL/oauths/reissue/token")
+                    .addHeader(HEADER_AUTHORIZATION, "Bearer $refreshToken")
                     .build()
 
-                chain.proceed(newRequest)
+                Log.d(TAG, "재발급 중")
+
+                val refreshTokenResponse = chain.proceed(refreshTokenRequest)
+                Log.d(TAG, "refreshTokenResponse : $refreshTokenResponse")
+
+                if (refreshTokenResponse.isSuccessful) {
+                    Log.d(TAG, "재발급 성공")
+
+                    val responseToken = parseRefreshTokenResponse(refreshTokenResponse)
+
+                    responseToken?.result?.let {
+                        runBlocking {
+                            setAccessTokenUseCase(it.accessToken)
+                            setRefreshTokenUseCase(it.refreshToken)
+
+                            newAccessToken = it.accessToken
+                        }
+                    }
+
+                    refreshTokenResponse.close()
+                    val newRequest = originalRequest.newAuthBuilder().build()
+                    return chain.proceed(newRequest)
+                }
+
             } catch (e: Exception) {
-                Log.d(TAG, "토큰 재발급 실패" + response)
-//                    e.printStackTrace() //이거 빼니까 강제종료 안된다
-
-                // 리프레시 토큰이 만료되어 재발급에 실패했을 때 로그아웃 처리
-//                if (response.code == 403) {
-                    runBlocking { logoutUseCase() }
-
-                    Handler(Looper.getMainLooper()).post {
-                        val context = App.appContext
-                        Toast.makeText(context, "토큰이 만료되어 로그아웃 됩니다.", Toast.LENGTH_SHORT).show()
-                        val intent = Intent(context, LoginActivity::class.java) // 로그인 화면으로 이동
-                        intent.addFlags(Intent.FLAG_ACTIVITY_NEW_TASK or Intent.FLAG_ACTIVITY_CLEAR_TASK)
-                        context.startActivity(intent)
-//                    }
+                runBlocking { logoutUseCase() }
+                Log.d(TAG, "재발급 실패 $e")
+
+                Handler(Looper.getMainLooper()).post {
+                    val context = App.appContext
+                    Toast.makeText(context, "토큰이 만료되어 로그아웃 됩니다.", Toast.LENGTH_SHORT).show()
+                    val intent = Intent(context, LoginActivity::class.java) // 로그인 화면으로 이동
+                    intent.addFlags(Intent.FLAG_ACTIVITY_NEW_TASK or Intent.FLAG_ACTIVITY_CLEAR_TASK)
+                    context.startActivity(intent)
                 }
             }
+        }
+
+        if (response.code == 404) {
+            runBlocking { logoutUseCase() }
+            Log.e(TAG, "다른 유저!")
 
+            Handler(Looper.getMainLooper()).post {
+                val context = App.appContext
+                Toast.makeText(context, "토큰이 만료되어 로그아웃 됩니다.", Toast.LENGTH_SHORT).show()
+                val intent = Intent(context, LoginActivity::class.java) // 로그인 화면으로 이동
+                intent.addFlags(Intent.FLAG_ACTIVITY_NEW_TASK or Intent.FLAG_ACTIVITY_CLEAR_TASK)
+                context.startActivity(intent)
+            }
         }
+
         return response
     }
+
+    private fun Request.newAuthBuilder() =
+        this.newBuilder().addHeader(HEADER_AUTHORIZATION, "Bearer $newAccessToken")
+
+    private fun parseRefreshTokenResponse(response: Response): BaseResponse<TokenResponse>? {
+        return try {
+            val gson = Gson()
+            val responseType: Type = object : TypeToken<BaseResponse<TokenResponse>>() {}.type
+            gson.fromJson(response.body?.string(), responseType)
+        } catch (e: Exception) {
+            null
+        }
+    }
 }
diff --git a/app/src/main/java/com/eatssu/android/ui/login/IntroViewModel.kt b/app/src/main/java/com/eatssu/android/ui/login/IntroViewModel.kt
@@ -19,9 +19,13 @@ class IntroViewModel @Inject constructor(
     private val _uiState: MutableStateFlow<IntroState> = MutableStateFlow(IntroState())
     val uiState: StateFlow<IntroState> = _uiState.asStateFlow()
 
+    init {
+        autoLogin()
+    }
+
     fun autoLogin() {
         viewModelScope.launch {
-            if (getAccessTokenUseCase().isNotEmpty()) {
+            if (getAccessTokenUseCase().isEmpty()) {
                 _uiState.update { it.copy(isAutoLogined = false) }
             } else {
                 _uiState.update { it.copy(isAutoLogined = true) }