first commit idp

Dockerfile

@@ -1,6 +1,6 @@
 # Step 1
 ## base image for Step 1: Node 14
-FROM node:14 AS builder
+FROM node:18 AS builder
 WORKDIR /app
 COPY package.json .
 COPY package-lock.json .

package.json

@@ -29,7 +29,7 @@
     "@nestjs/platform-express": "^9.0.0",
     "@nestjs/typeorm": "^9.0.1",
     "@types/passport-jwt": "^3.0.8",
-    "axios": "^1.4.0",
+    "axios": "^1.6.5",
     "class-transformer": "^0.5.1",
     "class-validator": "^0.14.0",
     "joi": "^17.7.0",

src/user/dto/login-user.dto.ts

@@ -1,8 +1,5 @@
 export class LoginUserDto {
-    readonly jwt_token : string;
-
-    readonly email : string;
+  readonly code: string;
 
-    readonly uuid : string;
-  }
-
+  readonly state?: string;
+}

src/user/user.controller.ts

@@ -3,6 +3,7 @@ import {
   Controller,
   Get,
   Post,
+  Query,
   Req,
   SetMetadata,
   UseGuards,
@@ -15,8 +16,8 @@ import { LoginUserDto } from './dto/login-user.dto';
 export class UserController {
   constructor(private readonly usersevice: UserService) {}
 
-  @Post('/join')
-  LogIn(@Body() loginuserDto: LoginUserDto): Promise<{ accessToken }> {
+  @Get('/join') // front-end set this path to redirect url /user/join
+  LogIn(@Query() loginuserDto: LoginUserDto): Promise<{ accessToken }> {
     return this.usersevice.LogIn(loginuserDto); //idp에서 발급받은 jwt token
   }
 

src/user/user.service.ts

@@ -3,7 +3,9 @@ import {
   ConflictException,
   Inject,
   Injectable,
+  InternalServerErrorException,
   NotFoundException,
+  UnauthorizedException,
 } from '@nestjs/common';
 import { ConfigService } from '@nestjs/config';
 import { JwtService } from '@nestjs/jwt';
@@ -13,6 +15,8 @@ import { User } from './entity/user.entity';
 import { LoginUserDto } from './dto/login-user.dto';
 import { PaylaodDto } from './dto/payload.dto';
 import { AuthParse } from 'src/utils/utils';
+import { AxiosError, AxiosResponse } from 'axios';
+import { catchError, firstValueFrom } from 'rxjs';
 
 @Injectable()
 export class UserService {
@@ -27,7 +31,38 @@ export class UserService {
   /**idp로 부터 get 요청을 통해 유저의 로그인 여부를 확인합니다.
    * 확인되었다면 Gistalk용 jwtToken을 리턴합니다
    */
-  async LogIn(Loginuserdto: LoginUserDto): Promise<any> {}
+  async LogIn({ code, state }: LoginUserDto): Promise<any> {
+    console.log('in login');
+    console.log(code);
+    const accessTokeResponse = await firstValueFrom(
+      this.httpService
+        .post(
+          'https://api.idp.gistory.me/oauth/token',
+          {
+            code: code,
+            grant_type: 'authorization_code',
+            redirect_uri: 'http://localhost:3000/user/join',
+          },
+          {
+            headers: { 'content-type': 'application/x-www-form-urlencoded' },
+            auth: {
+              username: this.configService.get<string>('CLIENT_ID'),
+              password: this.configService.get<string>('CLIENT_SECRET_KEY'),
+            },
+          },
+        )
+        .pipe(
+          catchError((err: AxiosError) => {
+            if (err.response?.status === 401) {
+              throw new UnauthorizedException('Invalid auth code');
+            }
+            throw new InternalServerErrorException('network error');
+          }),
+        ),
+    );
+
+    return accessTokeResponse.data;
+  }
 }
 
 // let { jwt_token, email, uuid } = Loginuserdto;