Feature/55 add user sms

build.gradle

@@ -81,6 +81,9 @@ dependencies {
 
  implementation 'com.google.zxing:core:3.4.1'
  implementation 'com.google.zxing:javase:3.4.1'
+
+ //nurigo 문자인증
+ implementation 'net.nurigo:sdk:4.3.0'
 }
 
 

src/main/java/com/sscanner/team/global/configure/SecurityConfig.java

@@ -45,12 +45,8 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 
  // 경로별 인가
  http.authorizeHttpRequests((authorize)->
-// authorize.requestMatchers("/**").permitAll()
-// .requestMatchers("/reissue").permitAll()
-
- authorize.requestMatchers("/login","/", "health","api/users/join").permitAll()
+ authorize.requestMatchers("/login","/", "health","api/users/join","/sms/**").permitAll()
  .requestMatchers("/admin").hasRole("ADMIN")
- .requestMatchers("/reissue").permitAll()
  .anyRequest().authenticated()
  );
 

src/main/java/com/sscanner/team/global/exception/ExceptionCode.java

@@ -58,7 +58,8 @@ public enum ExceptionCode {
  NOT_EXIST_REFRESH_TOKEN(400, "리프레시 토큰이 존재하지 않습니다."),
  EXPIRED_REFRESH_TOKEN(400, "리프레시 토큰이 만료되었습니다."),
  INVALID_REFRESH_TOKEN(400, "유효하지 않은 리프레시 토큰입니다."),
- CURRENT_PASSWORD_NOT_MATCH(400, "현재 비밀번호와 일치하지 않습니다.");
+ CURRENT_PASSWORD_NOT_MATCH(400, "현재 비밀번호와 일치하지 않습니다."),
+ UNAUTHORIZED(401, "인증에 실패했습니다.");
 
  private final int code;
  private final String message;

src/main/java/com/sscanner/team/user/SmsCertificationUtil.java

@@ -0,0 +1,38 @@
+package com.sscanner.team.user;
+
+import jakarta.annotation.PostConstruct;
+import net.nurigo.sdk.NurigoApp;
+import net.nurigo.sdk.message.model.Message;
+import net.nurigo.sdk.message.request.SingleMessageSendingRequest;
+import net.nurigo.sdk.message.service.DefaultMessageService;
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+
+@Component
+public class SmsCertificationUtil {
+ @Value("${coolsms.api.key}")
+ private String apiKey;
+
+ @Value("${coolsms.api.secret}")
+ private String apiSecret;
+
+ @Value("${coolsms.api.number}")
+ private String fromNumber;
+
+ DefaultMessageService messageService;
+
+ @PostConstruct // 의존성 주입이 완료된 후 초기화 수행
+ public void init(){
+ this.messageService = NurigoApp.INSTANCE.initialize(apiKey, apiSecret, "https://api.coolsms.co.kr");
+ }
+
+ // 단일 메시지 발송
+ public void sendSMS(String to, String certificationCode){
+ Message message = new Message();
+ message.setFrom(fromNumber);
+ message.setTo(to);
+ message.setText("본인확인 인증번호는 " + certificationCode + "입니다.");
+
+ this.messageService.sendOne(new SingleMessageSendingRequest(message));
+ }
+}

src/main/java/com/sscanner/team/user/controller/SmsController.java

@@ -0,0 +1,41 @@
+package com.sscanner.team.user.controller;
+
+import com.sscanner.team.global.common.response.ApiResponse;
+import com.sscanner.team.global.exception.BadRequestException;
+import com.sscanner.team.global.exception.ExceptionCode;
+import com.sscanner.team.user.requestdto.SmsRequestDto;
+import com.sscanner.team.user.requestdto.SmsVerifyRequestDto;
+import com.sscanner.team.user.service.SmsService;
+import jakarta.validation.Valid;
+import lombok.RequiredArgsConstructor;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
+@RestController
+@RequiredArgsConstructor
+@RequestMapping("/sms")
+public class SmsController {
+
+ private final SmsService smsService;
+
+ @PostMapping("/send")
+ public ApiResponse<?> SendSMS(@RequestBody @Valid SmsRequestDto smsRequestDto){
+ smsService.SendSms(smsRequestDto);
+ return new ApiResponse<>(200,"문자를 전송했습니다",null);
+ }
+
+ @PostMapping("/verify")
+ public ApiResponse<?> verifyCode(@RequestBody @Valid SmsVerifyRequestDto req) {
+ boolean verify = smsService.verifyCode(req);
+ if (verify) {
+ return new ApiResponse<>(200,"인증이 완료되었습니다.",null);
+ } else {
+ throw new BadRequestException(ExceptionCode.UNAUTHORIZED);
+ }
+ }
+}
+
+
+

src/main/java/com/sscanner/team/user/repository/SmsRepository.java

@@ -0,0 +1,39 @@
+package com.sscanner.team.user.repository;
+
+import lombok.RequiredArgsConstructor;
+import org.springframework.data.redis.core.StringRedisTemplate;
+import org.springframework.stereotype.Repository;
+
+import java.time.Duration;
+
+@RequiredArgsConstructor
+@Repository
+public class SmsRepository {
+
+ private final String PREFIX = "sms:"; // 키
+
+ private final StringRedisTemplate stringRedisTemplate;
+
+ // 인증 정보 저장
+ public void createSmsCertification(String phone, String code) {
+ int LIMIT_TIME = 60 * 120; // 유효시간 (2분)
+ stringRedisTemplate.opsForValue()
+ .set(PREFIX + phone, code, Duration.ofSeconds(LIMIT_TIME));
+ }
+
+ // 인증 정보 조회
+ public String getSmsCertification(String phone) {
+ return stringRedisTemplate.opsForValue().get(PREFIX + phone);
+ }
+
+ //인증 정보 삭제
+ public void deleteSmsCertification(String phone) {
+ stringRedisTemplate.delete(PREFIX + phone);
+ }
+
+ // 인증 정보 Redis에 존재 확인
+ public boolean hasKey(String phone) {
+ return Boolean.TRUE.equals(stringRedisTemplate.hasKey(PREFIX + phone)); // Redis에서 해당 키의 존재 여부 확인
+ }
+}
+

src/main/java/com/sscanner/team/user/repository/UserRepository.java

@@ -14,6 +14,7 @@ public interface UserRepository extends JpaRepository<User, String> {
  boolean existsByNickname(String nickname);
  boolean existsByPhone(String phone);
  Optional<User> findByEmail(String email);
+ Optional<User> findByPhone(String phone);
 
  @Modifying
  @Transactional

src/main/java/com/sscanner/team/user/requestdto/SmsRequestDto.java

@@ -0,0 +1,10 @@
+package com.sscanner.team.user.requestdto;
+
+import jakarta.validation.constraints.NotEmpty;
+
+public record SmsRequestDto(
+ @NotEmpty(message = "휴대폰 번호를 입력해주세요")
+ String phoneNum
+) {
+
+}

src/main/java/com/sscanner/team/user/requestdto/SmsVerifyRequestDto.java

@@ -0,0 +1,12 @@
+package com.sscanner.team.user.requestdto;
+
+import jakarta.validation.constraints.NotNull;
+
+public record SmsVerifyRequestDto (
+
+ @NotNull(message = "휴대폰 번호를 입력해주세요.")
+ String phoneNum,
+ @NotNull(message = "인증번호를 입력해주세요.")
+ String code
+){
+}

src/main/java/com/sscanner/team/user/requestdto/UserJoinRequestDto.java

@@ -18,7 +18,11 @@ public record UserJoinRequestDto(
  String nickname,
 
  @NotBlank(message = "전화번호가 비어있습니다.")
- String phone
+ String phone,
+
+ @NotBlank(message = "인증번호가 비어있습니다.")
+ String smsCode
+
 
 ) {
 

src/main/java/com/sscanner/team/user/service/SmsService.java

@@ -0,0 +1,56 @@
+package com.sscanner.team.user.service;
+
+import com.sscanner.team.global.exception.BadRequestException;
+import com.sscanner.team.global.exception.ExceptionCode;
+import com.sscanner.team.user.SmsCertificationUtil;
+import com.sscanner.team.user.repository.SmsRepository;
+import com.sscanner.team.user.repository.UserRepository;
+import com.sscanner.team.user.requestdto.SmsRequestDto;
+import com.sscanner.team.user.requestdto.SmsVerifyRequestDto;
+import lombok.RequiredArgsConstructor;
+import org.springframework.stereotype.Service;
+import java.security.SecureRandom;
+
+@RequiredArgsConstructor
+@Service
+public class SmsService {
+
+ private final SmsCertificationUtil smsCertificationUtil;
+ private final SmsRepository smsRepository;
+ private final UserRepository userRepository;
+
+ private static final SecureRandom secureRandom = new SecureRandom();
+
+ public void SendSms(SmsRequestDto smsRequestDto) {
+ String phoneNum = smsRequestDto.phoneNum();
+
+ if (userRepository.findByPhone(phoneNum).isPresent()) {
+ throw new BadRequestException(ExceptionCode.DUPLICATED_PHONE);
+ }
+
+ int certificationCode = secureRandom.nextInt(900000) + 100000; // 100000 ~ 999999 범위의 난수
+ String codeAsString = Integer.toString(certificationCode);
+
+ // SMS 전송
+ smsCertificationUtil.sendSMS(phoneNum, codeAsString);
+
+ // 인증 코드 저장
+ smsRepository.createSmsCertification(phoneNum, codeAsString);
+
+ }
+
+ public boolean verifyCode(SmsVerifyRequestDto smsVerifyDto) {
+ if (isVerify(smsVerifyDto.phoneNum(), smsVerifyDto.code())) {
+ smsRepository.deleteSmsCertification(smsVerifyDto.phoneNum());
+ return true;
+ } else {
+ return false;
+ }
+ }
+
+ public boolean isVerify(String phoneNum, String code) { // 전화번호에 대한 키 존재 + 인증코드 일치 검증
+ return smsRepository.hasKey(phoneNum) &&
+ smsRepository.getSmsCertification(phoneNum).equals(code);
+ }
+
+}

src/main/java/com/sscanner/team/user/service/UserService.java

@@ -7,10 +7,11 @@
 import com.sscanner.team.global.exception.ExceptionCode;
 import com.sscanner.team.user.repository.UserRepository;
 import com.sscanner.team.user.requestdto.UserJoinRequestDto;
-import com.sscanner.team.user.requestdto.UserNicknameUpdateRequestDto;
 import com.sscanner.team.user.requestdto.UserPasswordChangeRequestDto;
 import com.sscanner.team.user.responsedto.*;
 import jakarta.transaction.Transactional;
+import com.sscanner.team.user.requestdto.SmsVerifyRequestDto;
+import com.sscanner.team.user.responsedto.UserJoinResponseDto;
 import lombok.RequiredArgsConstructor;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
 import org.springframework.stereotype.Service;
@@ -22,6 +23,7 @@ public class UserService {
 
  private final UserRepository userRepository;
  private final BCryptPasswordEncoder passwordEncoder;
+ private final SmsService smsService;
  private final UserUtils userUtils;
 
  // 이메일 중복 체크
@@ -68,6 +70,11 @@ public UserJoinResponseDto join(UserJoinRequestDto req){
  checkDuplicatedNickname(req.nickname());
  checkDuplicatedPhone(req.phone());
 
+ if (!smsService.verifyCode(new SmsVerifyRequestDto(req.phone(), req.smsCode()))) {
+ throw new IllegalArgumentException("핸드폰 인증에 실패하였습니다."); // 인증 실패 시 예외 던짐
+ }
+
+
  confirmPassword(req.password(), req.passwordCheck());
 
  User userEntity = req.toEntity(passwordEncoder.encode(req.password()));

src/main/resources/application.yml

@@ -56,5 +56,10 @@ logging:
 jwt:
  secret: ${JWT_SECRET}
 
+coolsms:
+ api:
+ key: "${COOLSMS_API_KEY}"
+ secret: "${COOLSMS_API_SECRET}"
+ number: "${COOLSMS_PHONE_NUMBER}"