feat: 카카오/구글 로그인 v2 추가

stae1102 · stae1102 · commit 19098c70ab91 · 2025-05-26T20:06:58.000+09:00
diff --git a/src/auth/oauth.v2.controller.ts b/src/auth/oauth.v2.controller.ts
@@ -0,0 +1,75 @@
+import { Body, Controller, Post } from '@nestjs/common';
+import {
+  ApiBadRequestResponse,
+  ApiOkResponse,
+  ApiOperation,
+  ApiTags,
+  ApiUnauthorizedResponse,
+} from '@nestjs/swagger';
+import { LoginOutput } from './dtos/login.dto';
+import { ErrorOutput } from '../common/dtos/output.dto';
+import { OAuthLoginRequest } from './dtos/request/oauth-login.request.dto';
+import { OAuthV2Service } from './oauth.v2.service';
+
+@Controller('oauth/v2')
+@ApiTags('oauth v2')
+export class OauthV2Controller {
+  constructor(private readonly oauthService: OAuthV2Service) {}
+
+  @ApiOperation({
+    summary: '카카오 로그인',
+    description:
+      '카카오 로그인 메서드. (회원가입이 안되어 있으면 회원가입 처리 후 로그인 처리)',
+  })
+  @ApiOkResponse({
+    description: '로그인 성공 여부와 함께 access, refresh token을 반환한다.',
+    type: LoginOutput,
+  })
+  @ApiBadRequestResponse({
+    description:
+      '카카오 로그인 요청 시 발생하는 에러를 알려준다.(ex : email 제공에 동의하지 않은 경우)',
+    type: ErrorOutput,
+  })
+  @ApiUnauthorizedResponse({
+    description: '카카오 로그인 실패 여부를 알려준다.',
+    type: ErrorOutput,
+  })
+  @Post('kakao')
+  async kakaoOauth(
+    @Body() oauthRequest: OAuthLoginRequest,
+  ): Promise<LoginOutput> {
+    return this.oauthService.kakaoOauth(oauthRequest);
+  }
+
+  @ApiOperation({
+    summary: '구글 로그인 v2',
+    description:
+      'id token을 사용하는 구글 로그인 메서드. (회원가입이 안되어 있으면 회원가입 처리 후 로그인 처리)',
+  })
+  @ApiOkResponse({
+    description: '로그인 성공 여부와 함께 access, refresh token을 반환한다.',
+    type: LoginOutput,
+  })
+  @ApiBadRequestResponse({
+    description: 'code가 잘못된 경우',
+    type: ErrorOutput,
+  })
+  @Post('google')
+  async googleAuthRedirect(
+    @Body() oauthRequest: OAuthLoginRequest,
+  ): Promise<LoginOutput> {
+    return this.oauthService.googleOauth(oauthRequest);
+  }
+
+  // @ApiOperation({
+  //   summary: '애플 로그인',
+  //   description:
+  //     '애플 로그인 메서드. (회원가입이 안되어 있으면 회원가입 처리 후 로그인 처리)',
+  // })
+  // @Get('apple-login')
+  // async appleLogin(
+  //   @Body() oauthRequest: OAuthLoginRequest,
+  // ): Promise<LoginOutput> {
+  //   return this.oauthService.appleLogin(oauthRequest);
+  // }
+}
diff --git a/src/auth/oauth.v2.service.ts b/src/auth/oauth.v2.service.ts
@@ -0,0 +1,192 @@
+import {
+  BadRequestException,
+  Injectable,
+  InternalServerErrorException,
+  UnauthorizedException,
+} from '@nestjs/common';
+import { LoginOutput } from './dtos/login.dto';
+import { PROVIDER } from '../users/constant/provider.constant';
+import { User } from '../users/entities/user.entity';
+import { OAuthUtil } from './util/oauth.util';
+import { UserRepository } from '../users/repository/user.repository';
+import { Payload } from './jwt/jwt.payload';
+import { REFRESH_TOKEN_KEY } from './constants';
+import { refreshTokenExpirationInCache } from './auth.module';
+import { customJwtService } from './jwt/jwt.service';
+import { RedisService } from '../infra/redis/redis.service';
+import * as CryptoJS from 'crypto-js';
+import { CategoryRepository } from '../categories/category.repository';
+import { OAuthLoginRequest } from './dtos/request/oauth-login.request.dto';
+import { OAuth2Client } from 'google-auth-library';
+import { ConfigService } from '@nestjs/config';
+
+@Injectable()
+export class OAuthV2Service {
+  constructor(
+    private readonly jwtService: customJwtService,
+    private readonly userRepository: UserRepository,
+    private readonly oauthUtil: OAuthUtil,
+    private readonly categoryRepository: CategoryRepository,
+    private readonly redisService: RedisService,
+    private readonly configService: ConfigService,
+  ) {}
+
+  private readonly googleClient = new OAuth2Client(
+    this.configService.get('GOOGLE_SECRET'),
+  );
+
+  // OAuth Login
+  async oauthLogin(email: string, provider: PROVIDER): Promise<LoginOutput> {
+    try {
+      const user: User = await this.userRepository.findOneByOrFail({
+        email,
+        provider,
+      });
+      if (user) {
+        const payload: Payload = this.jwtService.createPayload(
+          user.email,
+          true,
+          user.id,
+        );
+        const refreshToken = this.jwtService.generateRefreshToken(payload);
+        await this.redisService.set(
+          `${REFRESH_TOKEN_KEY}:${user.id}`,
+          refreshToken,
+          refreshTokenExpirationInCache,
+        );
+
+        return {
+          access_token: this.jwtService.sign(payload),
+          refresh_token: refreshToken,
+        };
+      } else {
+        throw new UnauthorizedException('Error in OAuth login');
+      }
+    } catch (e) {
+      throw e;
+    }
+  }
+
+  /*
+   * Get user info from Kakao Auth Server then create account,
+   * login and return access token and refresh token
+   */
+  async kakaoOauth({
+    authorizationToken,
+  }: OAuthLoginRequest): Promise<LoginOutput> {
+    try {
+      const { userInfo } = await this.oauthUtil.getKakaoUserInfo(
+        authorizationToken,
+      );
+
+      const email = userInfo.kakao_account.email;
+      if (!email) {
+        throw new BadRequestException('Please Agree to share your email');
+      }
+
+      const user = await this.userRepository.findOneByEmailAndProvider(
+        email,
+        PROVIDER.KAKAO,
+      );
+      if (user) {
+        return this.oauthLogin(user.email, PROVIDER.KAKAO);
+      }
+
+      // 회원가입인 경우 기본 카테고리 생성 작업 진행
+      const newUser = User.of({
+        email,
+        name: userInfo.kakao_account.profile.nickname,
+        profileImage: userInfo.kakao_account.profile?.profile_image_url,
+        password: this.encodePasswordFromEmail(email, process.env.KAKAO_JS_KEY),
+        provider: PROVIDER.KAKAO,
+      });
+
+      await this.userRepository.createOne(newUser);
+      await this.categoryRepository.createDefaultCategories(newUser);
+
+      return this.oauthLogin(newUser.email, PROVIDER.KAKAO);
+    } catch (e) {
+      throw e;
+    }
+  }
+
+  // Login with Google account info
+  async googleOauth({
+    authorizationToken,
+  }: OAuthLoginRequest): Promise<LoginOutput> {
+    const ticket = await this.googleClient.verifyIdToken({
+      idToken: authorizationToken,
+    });
+    const payload = ticket.getPayload();
+
+    if (!payload || !payload.name || !payload.email) {
+      throw new BadRequestException('Invalid google payload');
+    }
+
+    const user = await this.userRepository.findOneByEmailAndProvider(
+      payload.email,
+      PROVIDER.GOOGLE,
+    );
+
+    if (user) {
+      return this.oauthLogin(user.email, PROVIDER.GOOGLE);
+    }
+
+    // 회원가입인 경우 기본 카테고리 생성 작업 진행
+    const newUser = User.of({
+      email: payload.email,
+      name: payload.name,
+      profileImage: payload.picture,
+      password: this.encodePasswordFromEmail(
+        payload.email,
+        process.env.GOOGLE_CLIENT_ID,
+      ),
+      provider: PROVIDER.GOOGLE,
+    });
+
+    await this.userRepository.createOne(newUser);
+    await this.categoryRepository.createDefaultCategories(newUser);
+
+    return this.oauthLogin(newUser.email, PROVIDER.GOOGLE);
+  }
+
+  private encodePasswordFromEmail(email: string, key?: string): string {
+    return CryptoJS.SHA256(email + key).toString();
+  }
+
+  public async appleLogin(code: string) {
+    const data = await this.oauthUtil.getAppleToken(code);
+
+    if (!data.id_token) {
+      throw new InternalServerErrorException(
+        `No token: ${JSON.stringify(data)}`,
+      );
+    }
+
+    const { sub: id, email } = this.jwtService.decode(data.id_token);
+
+    const user = await this.userRepository.findOneByEmailAndProvider(
+      email,
+      PROVIDER.APPLE,
+    );
+
+    if (user) {
+      return this.oauthLogin(user.email, PROVIDER.APPLE);
+    }
+
+    const newUser = User.of({
+      email,
+      name: email.split('@')[0],
+      password: this.encodePasswordFromEmail(
+        email,
+        process.env.APPLE_CLIENT_ID,
+      ),
+      provider: PROVIDER.APPLE,
+    });
+
+    await this.userRepository.createOne(newUser);
+    await this.categoryRepository.createDefaultCategories(newUser);
+
+    return this.oauthLogin(newUser.email, PROVIDER.APPLE);
+  }
+}
diff --git a/src/common/logger.ts b/src/common/logger.ts
@@ -1,5 +1,4 @@
 import * as winston from 'winston';
-import * as DailyRotateFile from 'winston-daily-rotate-file';
 
 const { combine, label, printf, colorize } = winston.format;
 const logFormat = printf(({ level, label, message }) => {
@@ -27,21 +26,7 @@ export const logger = winston.createLogger({
   level: 'info',
   levels: custom_level.levels,
   format: combine(colorize(), label({ label: 'Quickchive' }), logFormat),
-  transports: [
-    new winston.transports.Console(),
-    new DailyRotateFile({
-      filename: 'errors-%DATE%.log',
-      datePattern: 'YYYY-MM-DD',
-      maxSize: '1024',
-      level: 'error',
-    }),
-    new DailyRotateFile({
-      filename: '%DATE%.log',
-      datePattern: 'YYYY-MM-DD',
-      maxSize: '1024',
-      level: 'info',
-    }),
-  ],
+  transports: [new winston.transports.Console()],
 });
 
 export function getKoreaTime(): Date {
