Merge pull request #14 from KONKUK-MAP-Service/feat-login

➕ [Feat] :  메일로 임시 비밀번호 발급 기능 구현 #14

Author: evergreenn

.github/workflows/CD.yml

@@ -39,6 +39,8 @@ jobs:
           spring.jwt.secret: ${{ secrets.JWT_SECRET }}
           spring.data.redis.host: ${{secrets.REDIS_HOST}}
           spring.data.redis.port: ${{secrets.REDIS_PORT}}
+          spring.mail.username: ${{secrets.MAIL_USERNAME}}
+          spring.mail.password: ${{secrets.MAIL_PASSWORD}}
 
       - name: Grant execute permission for gradlew
         run: chmod +x ./gradlew

.github/workflows/CI.yml

@@ -41,6 +41,9 @@ jobs:
           spring.jwt.secret: ${{ secrets.JWT_SECRET }}
           spring.data.redis.host: ${{secrets.REDIS_HOST}}
           spring.data.redis.port: ${{secrets.REDIS_PORT}}
+          spring.mail.username: ${{secrets.MAIL_USERNAME}}
+          spring.mail.password: ${{secrets.MAIL_PASSWORD}}
+
 
 
       #gradlew 실행을 위한 권한 추가

build.gradle

@@ -51,6 +51,8 @@ dependencies {
 
 	//redis 의존성 추가
 	implementation("org.springframework.boot:spring-boot-starter-data-redis")
+	//SMTP
+	implementation 'org.springframework.boot:spring-boot-starter-mail'
 
 }
 

src/main/java/com/cona/KUsukKusuk/email/EmailConfig.java

@@ -0,0 +1,65 @@
+package com.cona.KUsukKusuk.email;
+
+import java.util.Properties;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.mail.javamail.JavaMailSender;
+import org.springframework.mail.javamail.JavaMailSenderImpl;
+@Configuration
+public class EmailConfig {
+    @Value("${spring.mail.host}")
+    private String host;
+
+    @Value("${spring.mail.port}")
+    private int port;
+
+    @Value("${spring.mail.username}")
+    private String username;
+
+    @Value("${spring.mail.password}")
+    private String password;
+
+    @Value("${spring.mail.properties.mail.smtp.auth}")
+    private boolean auth;
+
+    @Value("${spring.mail.properties.mail.smtp.starttls.enable}")
+    private boolean starttlsEnable;
+
+    @Value("${spring.mail.properties.mail.smtp.starttls.required}")
+    private boolean starttlsRequired;
+
+    @Value("${spring.mail.properties.mail.smtp.connectiontimeout}")
+    private int connectionTimeout;
+
+    @Value("${spring.mail.properties.mail.smtp.timeout}")
+    private int timeout;
+
+    @Value("${spring.mail.properties.mail.smtp.writetimeout}")
+    private int writeTimeout;
+
+    @Bean
+    public JavaMailSender javaMailSender() {
+        JavaMailSenderImpl mailSender = new JavaMailSenderImpl();
+        mailSender.setHost(host);
+        mailSender.setPort(port);
+        mailSender.setUsername(username);
+        mailSender.setPassword(password);
+        mailSender.setDefaultEncoding("UTF-8");
+        mailSender.setJavaMailProperties(getMailProperties());
+
+        return mailSender;
+    }
+
+    private Properties getMailProperties() {
+        Properties properties = new Properties();
+        properties.put("mail.smtp.auth", auth);
+        properties.put("mail.smtp.starttls.enable", starttlsEnable);
+        properties.put("mail.smtp.starttls.required", starttlsRequired);
+        properties.put("mail.smtp.connectiontimeout", connectionTimeout);
+        properties.put("mail.smtp.timeout", timeout);
+        properties.put("mail.smtp.writetimeout", writeTimeout);
+
+        return properties;
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/dto/EmailPostDto.java

@@ -0,0 +1,4 @@
+package com.cona.KUsukKusuk.email.dto;
+
+public record EmailPostDto(String email) {
+}

src/main/java/com/cona/KUsukKusuk/email/dto/EmailResponseDto.java

@@ -0,0 +1,10 @@
+package com.cona.KUsukKusuk.email.dto;
+
+public record EmailResponseDto(boolean success) {
+    public boolean isSuccess() {
+        return success;
+    }
+    public static EmailResponseDto of(boolean success) {
+        return new EmailResponseDto(success);
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/dto/EmailSendSuccessResponse.java

@@ -0,0 +1,7 @@
+package com.cona.KUsukKusuk.email.dto;
+
+public record EmailSendSuccessResponse(String message) {
+    public static EmailSendSuccessResponse of(String message) {
+        return new EmailSendSuccessResponse(message+"로 인증코드가 성공적으로 전송되었습니다. 유효기간은 30분 입니다.");
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/dto/EmailVerifySuccessResponse.java

@@ -0,0 +1,13 @@
+package com.cona.KUsukKusuk.email.dto;
+
+public record EmailVerifySuccessResponse(String message) {
+
+    public static EmailVerifySuccessResponse of(Boolean success) {
+        if (success) {
+            return new EmailVerifySuccessResponse("이메일 인증이 성공적으로 완료되었습니다.");
+        }
+        else {
+            return new EmailVerifySuccessResponse("인증코드가 올바르지 않습니다.");
+        }
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/dto/LoginRequest.java

@@ -0,0 +1,7 @@
+package com.cona.KUsukKusuk.email.dto;
+
+import lombok.Builder;
+
+@Builder
+public record LoginRequest( String username, String password) {
+}

src/main/java/com/cona/KUsukKusuk/email/exception/EmailNotSendException.java

@@ -0,0 +1,19 @@
+package com.cona.KUsukKusuk.email.exception;
+
+import com.cona.KUsukKusuk.global.exception.HttpExceptionCode;
+import lombok.Getter;
+import lombok.Setter;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.http.HttpStatus;
+
+@Getter
+@Setter
+@Slf4j
+public class EmailNotSendException extends RuntimeException{
+    private final HttpStatus httpStatus;
+
+    public EmailNotSendException(HttpExceptionCode exceptionCode) {
+        super(exceptionCode.getMessage());
+        this.httpStatus = exceptionCode.getHttpStatus();
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/exception/handler/EmailExceptionHandler.java

@@ -0,0 +1,25 @@
+package com.cona.KUsukKusuk.email.exception.handler;
+
+
+import com.cona.KUsukKusuk.email.exception.EmailNotSendException;
+import com.cona.KUsukKusuk.global.response.ErrorResponse;
+import com.cona.KUsukKusuk.global.response.HttpResponse;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.core.Ordered;
+import org.springframework.core.annotation.Order;
+import org.springframework.http.HttpStatus;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+import org.springframework.web.bind.annotation.ResponseStatus;
+import org.springframework.web.bind.annotation.RestControllerAdvice;
+
+@Slf4j
+@RestControllerAdvice
+@Order(Ordered.HIGHEST_PRECEDENCE)
+public class EmailExceptionHandler {
+    @ExceptionHandler(EmailNotSendException.class)
+    @ResponseStatus(HttpStatus.BAD_REQUEST)
+    public HttpResponse<ErrorResponse> EmailnotSendExceptionHandler(EmailNotSendException e) {
+        return HttpResponse.status(e.getHttpStatus())
+                .body(ErrorResponse.from(e.getHttpStatus(), e.getMessage()));
+    }
+}

src/main/java/com/cona/KUsukKusuk/email/service/EmailService.java

@@ -0,0 +1,44 @@
+package com.cona.KUsukKusuk.email.service;
+
+import com.cona.KUsukKusuk.email.exception.EmailNotSendException;
+import jakarta.transaction.Transactional;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.mail.SimpleMailMessage;
+import org.springframework.mail.javamail.JavaMailSender;
+import org.springframework.stereotype.Service;
+import com.cona.KUsukKusuk.global.exception.HttpExceptionCode;
+
+@Slf4j
+@Service
+@Transactional
+@RequiredArgsConstructor
+public class EmailService {
+
+    private final JavaMailSender emailSender;
+
+    public void sendEmail(String toEmail,
+                          String title,
+                          String text) {
+        SimpleMailMessage emailForm = createEmailForm(toEmail, title, text);
+        try {
+            emailSender.send(emailForm);
+        } catch (RuntimeException e) {
+
+            throw new EmailNotSendException(HttpExceptionCode.EMAIL_NOT_SEND);
+        }
+    }
+
+
+    private SimpleMailMessage createEmailForm(String toEmail,
+                                              String title,
+                                              String text) {
+        SimpleMailMessage message = new SimpleMailMessage();
+        message.setTo(toEmail);
+        message.setSubject(title);
+        message.setText(text);
+
+        return message;
+    }
+
+}

src/main/java/com/cona/KUsukKusuk/global/exception/HttpExceptionCode.java

@@ -16,7 +16,9 @@ public enum HttpExceptionCode {
     JWT_NOT_FOUND(HttpStatus.UNAUTHORIZED, "JWT를 찾을 수 없습니다."),
     REFRESH_TOKEN_NOT_FOUND(HttpStatus.UNAUTHORIZED, "리프레시 토큰을 찾을 수 없습니다."),
 
-    USER_NOT_FOUND(HttpStatus.NOT_FOUND, "사용자를 찾을 수 없습니다.");  // 새로운 예외 코드 추가
+    USER_NOT_FOUND(HttpStatus.NOT_FOUND, "사용자를 찾을 수 없습니다."),
+
+    EMAIL_NOT_SEND(HttpStatus.NOT_FOUND,"이메일이 전송에 실패하였습니다.");
 
 
     private final HttpStatus httpStatus;

src/main/java/com/cona/KUsukKusuk/global/security/JWTUtil.java

@@ -5,6 +5,7 @@
 import io.jsonwebtoken.Jwts;
 import jakarta.servlet.http.HttpServletRequest;
 import java.nio.charset.StandardCharsets;
+import java.time.Duration;
 import java.util.Date;
 import java.util.Map;
 import java.util.concurrent.TimeUnit;
@@ -73,7 +74,8 @@ public String createRefreshToken(String userid, String password, Long expiredMs)
                 .compact();
 
         // redis에 RT저장
-        redisService.setValues(refreshToken,userid);
+        redisService.setValues(refreshToken, userid, Duration.ofMillis(expiredMs));
+
 
         return refreshToken;
     }
@@ -96,4 +98,5 @@ public String getRefreshToken(HttpServletRequest request) {
     }
 
 
+
 }

src/main/java/com/cona/KUsukKusuk/user/controller/UserController.java

@@ -3,6 +3,8 @@
 import com.cona.KUsukKusuk.global.response.HttpResponse;
 import com.cona.KUsukKusuk.global.security.JWTUtil;
 import com.cona.KUsukKusuk.user.domain.User;
+import com.cona.KUsukKusuk.user.dto.FindPasswordRequest;
+import com.cona.KUsukKusuk.user.dto.FindPasswordResponse;
 import com.cona.KUsukKusuk.user.dto.TokenRefreshRequest;
 import com.cona.KUsukKusuk.user.dto.TokenRefreshResponse;
 import com.cona.KUsukKusuk.user.dto.UserJoinRequest;
@@ -62,4 +64,12 @@ public HttpResponse<TokenRefreshResponse> refreshToken(@RequestBody TokenRefresh
                 TokenRefreshResponse.of(newAccessToken)
         );
     }
+    @PostMapping("/find-password")
+    @Operation(summary = "비밀번호 찾기", description = "아이디와 이메일로 임시 비밀번호를 발급합니다.")
+    public HttpResponse<FindPasswordResponse> findPassword(@Valid @RequestBody FindPasswordRequest findPasswordRequest) {
+        String email = userService.findPassword(findPasswordRequest.userId(), findPasswordRequest.email());
+        return HttpResponse.okBuild(
+                FindPasswordResponse.of(email)
+        );
+    }
 }

src/main/java/com/cona/KUsukKusuk/user/dto/FindPasswordRequest.java

@@ -0,0 +1,15 @@
+package com.cona.KUsukKusuk.user.dto;
+
+import jakarta.validation.constraints.Email;
+import jakarta.validation.constraints.NotBlank;
+
+public record FindPasswordRequest(
+        @NotBlank(message = "사용자 이름은 필수 입력값입니다.")
+         String userId,
+
+        @NotBlank(message = "이메일 값은 필수 입력 값입니다.")
+        @Email(message = "이메일 형식에 맞지 않습니다.")
+         String email
+) {
+
+}

src/main/java/com/cona/KUsukKusuk/user/dto/FindPasswordResponse.java

@@ -0,0 +1,17 @@
+package com.cona.KUsukKusuk.user.dto;
+
+import lombok.Builder;
+
+@Builder
+public record FindPasswordResponse(String message) {
+
+    public static FindPasswordResponse of(String email) {
+
+
+        return FindPasswordResponse.builder()
+                .message(email+"로 임시 비밀번호를 보냈습니다.")
+                .build();
+
+
+    }
+}

src/main/java/com/cona/KUsukKusuk/user/repository/UserRepository.java

@@ -13,4 +13,6 @@ public interface UserRepository extends JpaRepository<User, Long> {
 
     Optional<User> findByUserId(String userid);
 
+    Optional<User> findByUserIdAndEmail(String userId, String email);
+
 }

src/main/java/com/cona/KUsukKusuk/user/service/UserService.java

@@ -1,5 +1,6 @@
 package com.cona.KUsukKusuk.user.service;
 
+import com.cona.KUsukKusuk.email.service.EmailService;
 import com.cona.KUsukKusuk.global.exception.HttpExceptionCode;
 import com.cona.KUsukKusuk.global.exception.custom.security.SecurityJwtNotFoundException;
 import com.cona.KUsukKusuk.global.redis.RedisService;
@@ -9,6 +10,8 @@
 import com.cona.KUsukKusuk.user.exception.UserNotFoundException;
 import com.cona.KUsukKusuk.user.repository.UserRepository;
 import lombok.RequiredArgsConstructor;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.springframework.security.core.context.SecurityContextHolder;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.stereotype.Service;
 
@@ -19,6 +22,7 @@ public class UserService {
     private final BCryptPasswordEncoder bCryptPasswordEncoder;
 
     private final RedisService redisService;
+    private final EmailService mailService;
     private final JWTUtil jwtUtil;
 
     public User save(UserJoinRequest userJoinRequest) {
@@ -74,6 +78,34 @@ private void isTokenPresent(String encryptedRefreshToken) {
             throw new SecurityJwtNotFoundException(HttpExceptionCode.JWT_NOT_FOUND);
         }
     }
+    public String findPassword(String userId, String email) {
+        User member = userRepository.findByUserIdAndEmail(userId, email)
+                .orElseThrow(() -> new UserNotFoundException(HttpExceptionCode.USER_NOT_FOUND));
 
+        String newPassword = generateNewPassword();
+        member.setPassword(bCryptPasswordEncoder.encode(newPassword));
+        userRepository.save(member);
+
+        String title = "쿠석쿠석 임시 비밀번호 발급";
+        mailService.sendEmail(email, title, "새로운 비밀번호 : " + newPassword);
+
+        return email;
+    }
+    private String generateNewPassword() {
+        String randomString = RandomStringUtils.randomAlphanumeric(9);
+
+        int randomIndex = (int) (Math.random() * 9);
+
+        char randomNumber = (char) ('0' + (int) (Math.random() * 10));
+        char[] newPasswordChars = randomString.toCharArray();
+        newPasswordChars[randomIndex] = randomNumber;
+
+        return new String(newPasswordChars);
+    }
+
+    public String getUsernameBySecurityContext() {
+        return SecurityContextHolder.getContext().getAuthentication()
+                .getName();
+    }
 
 }