🔀 :: 로그인 api 구현

src/main/java/com/juicycool/backend/domain/auth/RefreshToken.java

@@ -0,0 +1,19 @@
+package com.juicycool.backend.domain.auth;
+
+import com.juicycool.backend.global.security.jwt.JwtProvider;
+import lombok.Builder;
+import lombok.Getter;
+import org.springframework.data.annotation.Id;
+import org.springframework.data.redis.core.RedisHash;
+import org.springframework.data.redis.core.index.Indexed;
+
+@RedisHash(value = "jusi_refreshToken", timeToLive = JwtProvider.REFRESH_TOKEN_TIME)
+@Builder
+@Getter
+public class RefreshToken {
+    @Id
+    @Indexed
+    private Long userId;
+    @Indexed
+    private String token;
+}

src/main/java/com/juicycool/backend/domain/auth/exception/NotMatchPasswordException.java

@@ -0,0 +1,10 @@
+package com.juicycool.backend.domain.auth.exception;
+
+import com.juicycool.backend.global.exception.ErrorCode;
+import com.juicycool.backend.global.exception.GlobalException;
+
+public class NotMatchPasswordException extends GlobalException {
+    public NotMatchPasswordException() {
+        super(ErrorCode.NOT_MATCH_PASSWORD);
+    }
+}

src/main/java/com/juicycool/backend/domain/auth/presentation/AuthController.java

@@ -1,7 +1,11 @@
 package com.juicycool.backend.domain.auth.presentation;
 
+import com.juicycool.backend.domain.auth.presentation.dto.request.SignInRequestDto;
 import com.juicycool.backend.domain.auth.presentation.dto.request.SignUpRequestDto;
+import com.juicycool.backend.domain.auth.presentation.dto.response.TokenResponse;
+import com.juicycool.backend.domain.auth.service.SignInService;
 import com.juicycool.backend.domain.auth.service.SignUpService;
+import jakarta.validation.Valid;
 import lombok.RequiredArgsConstructor;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
@@ -16,12 +20,19 @@
 public class AuthController {
 
     private final SignUpService signUpService;
+    private final SignInService signInService;
 
     @PostMapping("/signup")
-    public ResponseEntity<Void> signUp(@RequestBody SignUpRequestDto dto) {
+    public ResponseEntity<Void> signUp(@Valid @RequestBody SignUpRequestDto dto) {
         signUpService.execute(dto);
         return ResponseEntity.status(HttpStatus.CREATED).build();
     }
 
+    @PostMapping("/signin")
+    public ResponseEntity<TokenResponse> signIn(@Valid @RequestBody SignInRequestDto dto) {
+        TokenResponse response = signInService.execute(dto);
+        return ResponseEntity.ok(response);
+    }
+
 
 }

src/main/java/com/juicycool/backend/domain/auth/presentation/dto/request/SignInRequestDto.java

@@ -0,0 +1,14 @@
+package com.juicycool.backend.domain.auth.presentation.dto.request;
+
+import jakarta.validation.constraints.NotBlank;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+
+@Getter
+@NoArgsConstructor
+public class SignInRequestDto {
+    @NotBlank
+    private String email;
+    @NotBlank
+    private String password;
+}

src/main/java/com/juicycool/backend/domain/auth/presentation/dto/request/SignUpRequestDto.java

@@ -1,15 +1,21 @@
 package com.juicycool.backend.domain.auth.presentation.dto.request;
 
+import jakarta.validation.constraints.NotBlank;
 import jakarta.validation.constraints.Pattern;
 import lombok.Builder;
 import lombok.Getter;
 
 @Getter
 @Builder
 public class SignUpRequestDto {
+    @NotBlank
     @Pattern(regexp = ".+@.+", message = "이메일 형식에 맞지 않습니다.")
     private String email;
+
+    @NotBlank
     private String name;
+
     @Pattern(regexp = "^(?=.*[A-Za-z])(?=.*[0-9])|(?=.*[A-Za-z])(?=.*[^A-Za-z0-9])|(?=.*[0-9])(?=.*[^A-Za-z0-9]).{8,}$", message = "비밀번호 형식이 올바르지 않습니다.")
+    @NotBlank
     private String password;
 }

src/main/java/com/juicycool/backend/domain/auth/presentation/dto/response/TokenResponse.java

@@ -0,0 +1,15 @@
+package com.juicycool.backend.domain.auth.presentation.dto.response;
+
+import lombok.Builder;
+import lombok.Getter;
+
+import java.time.LocalDateTime;
+
+@Getter
+@Builder
+public class TokenResponse {
+    private String accessToken;
+    private String refreshToken;
+    private LocalDateTime accessTokenExpiresIn;
+    private LocalDateTime refreshTokenExpiresIn;
+}

src/main/java/com/juicycool/backend/domain/auth/repository/RefreshTokenRepository.java

@@ -0,0 +1,7 @@
+package com.juicycool.backend.domain.auth.repository;
+
+import com.juicycool.backend.domain.auth.RefreshToken;
+import org.springframework.data.repository.CrudRepository;
+
+public interface RefreshTokenRepository extends CrudRepository<RefreshToken, Long> {
+}

src/main/java/com/juicycool/backend/domain/auth/service/SignInService.java

@@ -0,0 +1,8 @@
+package com.juicycool.backend.domain.auth.service;
+
+import com.juicycool.backend.domain.auth.presentation.dto.request.SignInRequestDto;
+import com.juicycool.backend.domain.auth.presentation.dto.response.TokenResponse;
+
+public interface SignInService {
+    TokenResponse execute(SignInRequestDto dto);
+}

src/main/java/com/juicycool/backend/domain/auth/service/impl/SignInServiceImpl.java

@@ -0,0 +1,48 @@
+package com.juicycool.backend.domain.auth.service.impl;
+
+import com.juicycool.backend.domain.auth.RefreshToken;
+import com.juicycool.backend.domain.auth.exception.NotMatchPasswordException;
+import com.juicycool.backend.domain.auth.presentation.dto.request.SignInRequestDto;
+import com.juicycool.backend.domain.auth.presentation.dto.response.TokenResponse;
+import com.juicycool.backend.domain.auth.repository.RefreshTokenRepository;
+import com.juicycool.backend.domain.auth.service.SignInService;
+import com.juicycool.backend.domain.user.User;
+import com.juicycool.backend.domain.user.exception.NotFoundUserException;
+import com.juicycool.backend.domain.user.repository.UserRepository;
+import com.juicycool.backend.global.annotation.TransactionService;
+import com.juicycool.backend.global.security.jwt.JwtProvider;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.crypto.password.PasswordEncoder;
+
+@TransactionService
+@RequiredArgsConstructor
+public class SignInServiceImpl implements SignInService {
+
+    private final UserRepository userRepository;
+    private final RefreshTokenRepository refreshTokenRepository;
+    private final PasswordEncoder passwordEncoder;
+    private final JwtProvider jwtProvider;
+
+    public TokenResponse execute(SignInRequestDto dto) {
+        User user = userRepository.findByEmail(dto.getEmail())
+                .orElseThrow(NotFoundUserException::new);
+
+        if (passwordEncoder.matches(user.getPassword(), dto.getPassword()))
+            throw new NotMatchPasswordException();
+
+        TokenResponse tokenResponse = jwtProvider.generateTokenDto(user.getId());
+
+        saveRefreshToken(user, tokenResponse.getRefreshToken());
+
+        return tokenResponse;
+    }
+
+    private void saveRefreshToken(User user, String token) {
+        RefreshToken refreshToken = RefreshToken.builder()
+                .userId(user.getId())
+                .token(token)
+                .build();
+
+        refreshTokenRepository.save(refreshToken);
+    }
+}

src/main/java/com/juicycool/backend/domain/user/exception/NotFoundUserException.java

@@ -0,0 +1,10 @@
+package com.juicycool.backend.domain.user.exception;
+
+import com.juicycool.backend.global.exception.ErrorCode;
+import com.juicycool.backend.global.exception.GlobalException;
+
+public class NotFoundUserException extends GlobalException {
+    public NotFoundUserException() {
+        super(ErrorCode.NOT_FOUND_USER);
+    }
+}

src/main/java/com/juicycool/backend/global/exception/ErrorCode.java

@@ -19,7 +19,11 @@ public enum ErrorCode {
     // mail
     ALREADY_AUTHENTICATED_MAIL(400, "이미 인증된 메일입니다."),
     EXPIRED_AUTH_CODE(401, "이미 만료된 인증코드입니다."),
-    NOT_VERIFICATION_MAIL(401, "인증된 메일이 아닙니다.");
+    NOT_VERIFICATION_MAIL(401, "인증된 메일이 아닙니다."),
+
+    // user
+    NOT_FOUND_USER(404, "해당 유저를 찾을 수 없습니다."),
+    NOT_MATCH_PASSWORD(400, "비밀번호가 일치하지 않습니다.");
 
     private final int status;
     private final String message;

src/main/java/com/juicycool/backend/global/security/config/SecurityConfig.java

@@ -51,6 +51,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 
                                 // auth
                                 .requestMatchers(HttpMethod.POST, "/api/v1/auth/signup").permitAll()
+                                .requestMatchers(HttpMethod.POST, "/api/v1/auth/signin").permitAll()
 
                                 // mail
                                 .requestMatchers(HttpMethod.POST, "/api/v1/email").permitAll()

src/main/java/com/juicycool/backend/global/security/jwt/JwtProvider.java

@@ -1,5 +1,6 @@
 package com.juicycool.backend.global.security.jwt;
 
+import com.juicycool.backend.domain.auth.presentation.dto.response.TokenResponse;
 import com.juicycool.backend.global.auth.AuthDetailsService;
 import com.juicycool.backend.global.exception.ErrorCode;
 import com.juicycool.backend.global.exception.GlobalException;
@@ -33,8 +34,8 @@
 public class JwtProvider {
     private static final String AUTHORITIES_KEY = "auth";
     private static final String BEARER_TYPE = "Bearer ";
-    private static final long ACCESS_TOKEN_TIME = 1000 * 60 * 30L;
-    private static final long REFRESH_TOKEN_TIME = 1000 * 60 * 60 * 24 * 7L;
+    private static final long ACCESS_TOKEN_TIME = 60L * 15 * 4;
+    public static final long REFRESH_TOKEN_TIME = 60L * 60 * 24 * 7;
 
     @Value("${jwt.secret}")
     private String secretKey;
@@ -47,14 +48,14 @@ public void init(){
         key = Keys.hmacShaKeyFor(keyBytes);
     }
 
-//    public TokenResponse generateTokenDto(UUID id) {
-//        return TokenResponse.builder()
-//                .accessToken(generateAccessToken(id))
-//                .refreshToken(generateRefreshToken(id))
-//                .accessTokenExpiresIn(LocalDateTime.now().plusSeconds(ACCESS_TOKEN_TIME))
-//                .refreshTokenExpiresIn(LocalDateTime.now().plusSeconds(REFRESH_TOKEN_TIME))
-//                .build();
-//    }
+    public TokenResponse generateTokenDto(Long id) {
+        return TokenResponse.builder()
+                .accessToken(generateAccessToken(id))
+                .refreshToken(generateRefreshToken(id))
+                .accessTokenExpiresIn(LocalDateTime.now().plusSeconds(ACCESS_TOKEN_TIME))
+                .refreshTokenExpiresIn(LocalDateTime.now().plusSeconds(REFRESH_TOKEN_TIME))
+                .build();
+    }
 
     public Long getExpiration(String accessToken) {
         Claims claims = Jwts.parserBuilder()
@@ -113,7 +114,7 @@ public String parseRefreshToken(String refreshToken) {
         }
     }
 
-    public String generateAccessToken(UUID id) {
+    public String generateAccessToken(Long id) {
         long now = (new Date()).getTime();
 
         Date accessTokenExpiresIn = new Date(now + ACCESS_TOKEN_TIME);
@@ -127,7 +128,7 @@ public String generateAccessToken(UUID id) {
                 .compact();
     }
 
-    public String generateRefreshToken(UUID id) {
+    public String generateRefreshToken(Long id) {
         long now = (new Date()).getTime();
 
         Date refreshTokenExpiresIn = new Date(now + REFRESH_TOKEN_TIME);