default

Author: boorownie

build.gradle

@@ -21,7 +21,9 @@ dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-web'
     implementation 'org.springframework.boot:spring-boot-starter-thymeleaf'
     implementation 'org.springframework.boot:spring-boot-starter-aop'
+
     testImplementation 'org.springframework.boot:spring-boot-starter-test'
+    testImplementation 'org.springframework.cloud:spring-cloud-contract-wiremock:4.1.4'
 }
 
 test {

src/main/java/nextstep/app/ui/LoginController.java

@@ -0,0 +1,58 @@
+package nextstep.app.ui;
+
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import jakarta.servlet.http.HttpSession;
+//import nextstep.oauth2.userinfo.OAuth2User;
+import nextstep.security.authentication.Authentication;
+import nextstep.security.context.SecurityContextHolder;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+
+
+@Controller
+public class LoginController {
+
+    @GetMapping("/")
+    public String login(Model model) {
+        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (authentication != null && authentication.isAuthenticated()) {
+            model.addAttribute("isAuthenticated", true);
+            String username = extractUsername(authentication);
+            model.addAttribute("userName", username);
+        } else {
+            model.addAttribute("isAuthenticated", false);
+        }
+        return "index";
+    }
+
+    private String extractUsername(Authentication authentication) {
+        if (authentication.getPrincipal() instanceof String) {
+            return (String) authentication.getPrincipal();
+        }
+//        if (authentication.getPrincipal() instanceof OAuth2User) {
+//            String userNameAttributeName = ((OAuth2User) authentication.getPrincipal()).getUserNameAttributeName();
+//            return (String) ((OAuth2User) authentication.getPrincipal()).getAttributes().get(userNameAttributeName);
+//        }
+        return "";
+    }
+
+    @PostMapping("/logout")
+    public String logout(HttpServletRequest request, HttpServletResponse response) {
+        HttpSession session = request.getSession(false);
+        if (session != null) {
+            session.invalidate();
+        }
+
+        Cookie cookie = new Cookie("JSESSIONID", null);
+        cookie.setPath("/");
+        cookie.setHttpOnly(true);
+        cookie.setMaxAge(0);
+        response.addCookie(cookie);
+
+        return "redirect:/";
+    }
+}

src/main/resources/application.properties

@@ -1,4 +0,0 @@
-github.access-token-uri: https://github.com/login/oauth/access_token
-github.profile-uri: https://api.github.com/user
-github.client-id: Ov23liTBhugSIcf8VX1v
-github.client-secret: 6971230149831276c87e6855d139f2b9dfab24e6

src/main/resources/static/index.html

@@ -0,0 +1,22 @@
+<!DOCTYPE html>
+<html lang="en" xmlns:th="http://www.thymeleaf.org">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Home Page</title>
+</head>
+<body>
+<h1>Welcome</h1>
+<div th:if="${isAuthenticated}">
+    <p>Welcome, <span th:text="${userName}"></span>!</p>
+    <form method="post" action="/logout">
+        <button type="submit">Logout</button>
+    </form>
+</div>
+<div th:if="${!isAuthenticated}">
+    <h2>Login with OAuth2 Providers</h2>
+    <a href="/oauth2/authorization/github">Login with Github</a><br>
+    <a href="/oauth2/authorization/google">Login with Google</a><br>
+</div>
+</body>
+</html>

src/main/resources/static/login.html

@@ -0,0 +1,133 @@
+package nextstep.app.oauth2;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import nextstep.app.domain.Member;
+import nextstep.app.domain.MemberRepository;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.params.ParameterizedTest;
+import org.junit.jupiter.params.provider.MethodSource;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.autoconfigure.web.servlet.AutoConfigureMockMvc;
+import org.springframework.boot.test.context.SpringBootTest;
+import org.springframework.cloud.contract.wiremock.AutoConfigureWireMock;
+import org.springframework.http.HttpHeaders;
+import org.springframework.mock.web.MockHttpSession;
+import org.springframework.test.context.ActiveProfiles;
+import org.springframework.test.web.servlet.MockMvc;
+import org.springframework.test.web.servlet.request.MockMvcRequestBuilders;
+import org.springframework.test.web.servlet.result.MockMvcResultMatchers;
+
+import java.util.HashMap;
+import java.util.Map;
+import java.util.stream.Stream;
+
+import static com.github.tomakehurst.wiremock.client.WireMock.*;
+import static org.assertj.core.api.Assertions.assertThat;
+import static org.springframework.test.web.servlet.result.MockMvcResultHandlers.print;
+
+@ActiveProfiles("test")
+@SpringBootTest
+@AutoConfigureMockMvc
+@AutoConfigureWireMock(port = 8089)
+class GithubAuthenticationFilterTest {
+
+    @Autowired
+    private MockMvc mockMvc;
+
+    @Autowired
+    private MemberRepository memberRepository;
+
+    @BeforeEach
+    void setupMockServer() throws Exception {
+        UserStub userB = new UserStub("b", "b_access_token", "[email protected]", "b", "b_avatar_url");
+        UserStub userC = new UserStub("c", "c_access_token", "[email protected]", "c", "c_avatar_url");
+
+        setupUserStub(userB);
+        setupUserStub(userC);
+    }
+
+    @ParameterizedTest
+    @MethodSource("userProvider")
+    void authenticationFilter(UserStub user) throws Exception {
+        String requestUri = "/login/oauth2/code/github?code=" + user.code;
+
+        mockMvc.perform(MockMvcRequestBuilders.get(requestUri))
+                .andDo(print())
+                .andExpect(MockMvcResultMatchers.status().is3xxRedirection())
+                .andExpect(MockMvcResultMatchers.redirectedUrl("/"));
+
+        Member savedMember = memberRepository.findByEmail(user.email).get();
+        assertThat(savedMember).isNotNull();
+        assertThat(savedMember.getEmail()).isEqualTo(user.email);
+        assertThat(savedMember.getName()).isEqualTo(user.name);
+    }
+
+    @ParameterizedTest
+    @MethodSource("userProvider")
+    void authenticationFilterWithState(UserStub user) throws Exception {
+        MockHttpSession session = new MockHttpSession();
+
+        String state = mockMvc.perform(MockMvcRequestBuilders.get("/oauth2/authorization/github").session(session))
+                .andExpect(MockMvcResultMatchers.status().is3xxRedirection())
+                .andReturn().getResponse().getHeader(HttpHeaders.LOCATION).split("&state=")[1];
+
+        String requestUri = "/login/oauth2/code/github?code=" + user.code + "&state=" + state;
+
+        mockMvc.perform(MockMvcRequestBuilders.get(requestUri).session(session))
+                .andDo(print())
+                .andExpect(MockMvcResultMatchers.status().is3xxRedirection())
+                .andExpect(MockMvcResultMatchers.redirectedUrl("/"));
+
+        Member savedMember = memberRepository.findByEmail(user.email).get();
+        assertThat(savedMember).isNotNull();
+        assertThat(savedMember.getEmail()).isEqualTo(user.email);
+        assertThat(savedMember.getName()).isEqualTo(user.name);
+    }
+
+    private void setupUserStub(UserStub user) throws Exception {
+        Map<String, String> accessTokenResponseBody = new HashMap<>();
+        accessTokenResponseBody.put("access_token", user.accessToken);
+        accessTokenResponseBody.put("token_type", "bearer");
+        String accessTokenJsonResponse = new ObjectMapper().writeValueAsString(accessTokenResponseBody);
+
+        stubFor(post(urlEqualTo("/login/oauth/access_token"))
+                .willReturn(aResponse()
+                        .withHeader(HttpHeaders.CONTENT_TYPE, "application/json")
+                        .withBody(accessTokenJsonResponse)));
+
+        Map<String, String> userProfile = new HashMap<>();
+        userProfile.put("email", user.email);
+        userProfile.put("name", user.name);
+        userProfile.put("avatar_url", user.avatarUrl);
+        String profileJsonResponse = new ObjectMapper().writeValueAsString(userProfile);
+
+        stubFor(get(urlEqualTo("/user"))
+                .willReturn(aResponse()
+                        .withHeader(HttpHeaders.CONTENT_TYPE, "application/json")
+                        .withBody(profileJsonResponse)));
+
+    }
+
+    static Stream<UserStub> userProvider() {
+        return Stream.of(
+                new UserStub("b", "b_access_token", "[email protected]", "b", "b_avatar_url"),
+                new UserStub("c", "c_access_token", "[email protected]", "c", "c_avatar_url")
+        );
+    }
+
+    static class UserStub {
+        String code;
+        String accessToken;
+        String email;
+        String name;
+        String avatarUrl;
+
+        public UserStub(String code, String accessToken, String email, String name, String avatarUrl) {
+            this.code = code;
+            this.accessToken = accessToken;
+            this.email = email;
+            this.name = name;
+            this.avatarUrl = avatarUrl;
+        }
+    }
+}