Merge pull request #10 from Likelion-at-SMWU-10th/feat/#9-jwt

[feat] jwt accesstoken 생성

.gitignore

@@ -305,4 +305,5 @@ cython_debug/
 Myvenv/
 .DS_Store
 
-myvenv/
+myvenv/
+.env

rememB/balanceapp/models.py

@@ -1,5 +1,5 @@
 from django.db import models
-from mainapp.models import User
+from userapp.models import User
 
 # Create your models here.
 class Question(models.Model):

rememB/letterapp/models.py

@@ -1,6 +1,6 @@
 from django.db import models
 
-from mainapp.models import User
+from userapp.models import User
 
 class Letter(models.Model):
     user = models.ForeignKey(User, on_delete=models.CASCADE) # 유저와 연동

rememB/mainapp/admin.py

@@ -1,4 +1 @@
 from django.contrib import admin
-from .models import User
-
-admin.site.register(User)

rememB/mainapp/models.py

@@ -1,9 +1,3 @@
 from django.db import models
 
-class User(models.Model):
-    uuid = models.CharField(max_length=100)
-    name = models.CharField(max_length=100)
-    birthyear = models.CharField(max_length=100)
-    birthday = models.CharField(max_length=100)
-    email = models.CharField(max_length=100)
 

rememB/rememB/settings.py

@@ -11,6 +11,7 @@
 """
 
 from pathlib import Path
+from decouple import config
 
 # Build paths inside the project like this: BASE_DIR / 'subdir'.
 BASE_DIR = Path(__file__).resolve().parent.parent
@@ -20,7 +21,7 @@
 # See https://docs.djangoproject.com/en/4.0/howto/deployment/checklist/
 
 # SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = 'django-insecure-xmbee_n!(mzgjc6!po*ut&7a2g7mq%^u0h-yl*ya=f61@de@6-'
+SECRET_KEY = config("SECRET_KEY")
 
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = True

rememB/userapp/admin.py

@@ -1,2 +1,4 @@
 from django.contrib import admin
+from .models import User
 
+admin.site.register(User)

rememB/userapp/models.py

@@ -1,3 +1,11 @@
 from django.db import models
 
 # Create your models here.
+class User(models.Model):
+    email = models.CharField(max_length=100)
+    provider = models.CharField(max_length=100)
+    user_name = models.CharField(max_length=100)
+    birthday = models.DateField()
+    access_token = models.CharField(max_length=200)
+    refresh_token = models.CharField(max_length=200)
+    expire = models.CharField(max_length=100)

rememB/userapp/serializers.py

@@ -0,0 +1,12 @@
+from rest_framework import serializers
+from .models import User
+
+class UserSerializer(serializers.ModelSerializer): # 유저 추가
+    class Meta:
+        model = User
+        fields = ('id', 'email', 'provider', 'user_name', 'birthday')
+
+class UserFindSerializer(serializers.ModelSerializer): # 유저 추가
+    class Meta:
+        model = User
+        fields = ('email', 'provider')

rememB/userapp/tokens.py

@@ -0,0 +1,21 @@
+# 토큰 발급, 복호화하기 위한 함수 관리를 위한 페이지
+
+import jwt
+import datetime
+from decouple import config
+
+def generate_token(payload, type): # payload 값과 토큰의 종류
+    if type == "access":
+        # 2시간
+        exp = datetime.datetime.utcnow() + datetime.timedelta(hours=2)
+    elif type == "refresh":
+        # 2주
+        exp = datetime.datetime.utcnow() + datetime.timedelta(weeks=2)
+    else:
+        raise Exception("Invalid tokenType")
+
+    payload['exp'] = exp
+    payload['iat'] = datetime.datetime.utcnow() # 발급 시간
+    encoded = jwt.encode(payload, config("JWT_SECRET_KEY"), algorithm="HS256")
+
+    return encoded

rememB/userapp/urls.py

@@ -1,6 +1,12 @@
-from django.urls import path
-from . import views
+from django.urls import path, include
+from .views import *
+from rest_framework.routers import DefaultRouter
 
-urlpatterns=[
-    path('login/',views.login, name='login'),
+routers = DefaultRouter()
+routers.register('auth', AuthViewSet, basename='auth')
+
+urlpatterns = [
+    path('', include(routers.urls)),
+    path('signin/', UserList.as_view()),
+    path('find/', UserFind.as_view()),
 ]

rememB/userapp/views.py

@@ -1,4 +1,124 @@
 from django.shortcuts import render
 
+from rest_framework.views import APIView
+from rest_framework.response import Response
+from rest_framework import status
+from rest_framework.decorators import action
+from rest_framework import viewsets
+
+from .serializers import UserFindSerializer, UserSerializer
+from .models import User
+from .tokens import *
+
+# Create your views here.
+class UserList(APIView):
+    def post(self, request): # 회원 등록하는 경우
+        serializer = UserSerializer(data = request.data)
+        if serializer.is_valid():
+            serializer.save()
+            return Response(serializer.data, status=status.HTTP_201_CREATED)
+        return Response(serializer.errors, status=status.HTTP_400_BAD_REQUEST)
+
+    def get(self, request): # 회원 조회하는 경우
+        users = User.objects.all()
+        serializer = UserSerializer(users, many=True) # 다수의 쿼리셋 전달 위해서 many = True
+        return Response(serializer.data)
+
+class UserFind(APIView):
+    def post(self, request):
+        serializer = UserFindSerializer(data = request.data)
+        if serializer.is_valid():
+            email = request.data['email']
+            provider = request.data['provider']
+            try:
+                user = User.objects.get( 
+                    email=email,
+                    provider=provider
+                )
+                print(user.id)
+                # payload에 넣을 값 커스텀 가능
+                payload_value = user.id
+                payload = {
+                    "subject": payload_value,
+                }
+
+                access_token = generate_token(payload, "access")
+
+                data = {
+                    "results": {
+                        "access_token": access_token
+                    }
+                }
+
+                return Response(data=data, status=status.HTTP_200_OK)
+
+            except User.DoesNotExist:
+                data = {
+                    "results": {
+                        "msg": "유저 정보가 올바르지 않습니다.",
+                        "code": "E4010"
+                    }
+                }
+                return Response(data=data, status=status.HTTP_401_UNAUTHORIZED)
+
+            except Exception as e:
+                print(e)
+                data = {
+                    "results": {
+                        "msg": "정상적인 접근이 아닙니다.",
+                        "code": "E5000"
+                    }
+                }
+                return Response(data=data, status=status.HTTP_500_INTERNAL_SERVER_ERROR)
+
+
+
+class AuthViewSet(viewsets.GenericViewSet):
+    @action(methods=['POST'], detail=False)
+    def signin(self, request):
+        email = request.data['email']
+        provider = request.data['provider']
+        print(email, provider)
+        try:
+            user = User.objects.get( 
+                email=email,
+                provider=provider
+            )
+
+            # payload에 넣을 값 커스텀 가능
+            payload_value = user.id
+            payload = {
+                "subject": payload_value,
+            }
+
+            access_token = generate_token(payload, "access")
+
+            data = {
+                "results": {
+                    "access_token": access_token
+                }
+            }
+
+            return Response(data=data, status=status.HTTP_200_OK)
+
+        except User.DoesNotExist:
+            data = {
+                "results": {
+                    "msg": "유저 정보가 올바르지 않습니다.",
+                    "code": "E4010"
+                }
+            }
+            return Response(data=data, status=status.HTTP_401_UNAUTHORIZED)
+
+        except Exception as e:
+            print(e)
+            data = {
+                "results": {
+                    "msg": "정상적인 접근이 아닙니다.",
+                    "code": "E5000"
+                }
+            }
+            return Response(data=data, status=status.HTTP_500_INTERNAL_SERVER_ERROR)
+
 def login(request):
-    return render(request,'userapp/login.html')
+    return render(request,'userapp/login.html')