[Feat] 회원 탈퇴 API 개발 (#64)

soonge2 · web-flow · commit 87764f557eb3 · 2025-05-07T13:27:09.000+09:00
* feat: 회원 탈퇴 서비스 로직 구현 및 관련 삭제 메서드 추가 (#29) * feat: 회원 탈퇴 컨트롤러 구현 (#29) * feat: 카카오 연동 해제 로직 추가 (#29) - 카카오 연동 해제 로직 추가 (OAuth 전략 패턴 내 구현) - RestTemplate Bean 전역 설정 (config 패키지 이동) - OAuth 연동 ID 기반 unlink 요청 및 응답 로깅 처리 - 관련 커스텀 예외 코드 추가 - 관련 리포지토리 코드 추가 * feat: 회원 탈퇴 시 그룹 소유자 승계 로직 추가 (#29) * fix: 회원 탈퇴 시 처리 순서 조정 및 유저 상태 변경 시점 수정 (#29) - 그룹 소유자 승계 후 그룹 멤버 삭제로 순서 변경 (유효한 멤버 기반 승계 보장) - 카카오 연동 해제, 토큰/OAuth 삭제 이후에 회원 상태 변경 수행 - user.withdraw()를 가장 마지막에 호출하여 도메인 정합성 유지 * fix: 회원 탈퇴 시 그룹 멤버 삭제 방식을 soft delete에서 hard delete로 수정 (#29)
diff --git a/src/main/java/com/moa/moa_server/config/RestTemplateConfig.java b/src/main/java/com/moa/moa_server/config/RestTemplateConfig.java
@@ -1,14 +1,14 @@
-package com.moa.moa_server.domain.ai.config;
+package com.moa.moa_server.config;
 
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.web.client.RestTemplate;
 
 @Configuration
-public class AiConfig {
+public class RestTemplateConfig {
 
     @Bean
     public RestTemplate restTemplate() {
         return new RestTemplate();
     }
-}
+}
diff --git a/src/main/java/com/moa/moa_server/domain/auth/handler/AuthErrorCode.java b/src/main/java/com/moa/moa_server/domain/auth/handler/AuthErrorCode.java
@@ -12,7 +12,8 @@ public enum AuthErrorCode implements BaseErrorCode {
     USER_WITHDRAWN(HttpStatus.UNAUTHORIZED),
     INVALID_PROVIDER(HttpStatus.BAD_REQUEST),
     KAKAO_TOKEN_FAILED(HttpStatus.UNAUTHORIZED),
-    KAKAO_USERINFO_FAILED(HttpStatus.UNAUTHORIZED);
+    KAKAO_USERINFO_FAILED(HttpStatus.UNAUTHORIZED),
+    OAUTH_NOT_FOUND(HttpStatus.NOT_FOUND),;
 
     private final HttpStatus status;
 
diff --git a/src/main/java/com/moa/moa_server/domain/auth/repository/OAuthRepository.java b/src/main/java/com/moa/moa_server/domain/auth/repository/OAuthRepository.java
@@ -1,6 +1,7 @@
 package com.moa.moa_server.domain.auth.repository;
 
 import com.moa.moa_server.domain.auth.entity.OAuth;
+import com.moa.moa_server.domain.user.entity.User;
 import org.springframework.data.jpa.repository.JpaRepository;
 import org.springframework.lang.NonNull;
 
@@ -9,4 +10,6 @@
 public interface OAuthRepository extends JpaRepository<OAuth, Long> {
 
     Optional<OAuth> findById(@NonNull Long id);
+    void deleteByUserId(Long userId);
+    Optional<OAuth> findByUser(User user);
 }
diff --git a/src/main/java/com/moa/moa_server/domain/auth/service/AuthService.java b/src/main/java/com/moa/moa_server/domain/auth/service/AuthService.java
@@ -55,4 +55,11 @@ public TokenRefreshResponse refreshAccessToken(String refreshToken) {
     public boolean logout(Long userId) {
         return refreshTokenService.deleteRefreshTokenByUserId(userId); // true면 SUCCESS, false면 ALREADY_LOGGED_OUT
     }
+
+    public void unlinkKakaoAccount(Long kakaoUserId) {
+        OAuthLoginStrategy strategy = strategies.get("kakao");
+        if (strategy != null) {
+            strategy.unlink(kakaoUserId);
+        }
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/auth/service/strategy/KakaoOAuthLoginStrategy.java b/src/main/java/com/moa/moa_server/domain/auth/service/strategy/KakaoOAuthLoginStrategy.java
@@ -37,9 +37,14 @@ public class KakaoOAuthLoginStrategy implements OAuthLoginStrategy {
     private final JwtTokenService jwtTokenService;
     private final RefreshTokenService refreshTokenService;
 
+    private final RestTemplate restTemplate;
+
     @Value("${kakao.client-id}")
     private String kakaoClientId;
 
+    @Value("${kakao.admin-key}")
+    private String kakaoAdminKey;
+
     @Value("${kakao.redirect-uri}")
     private String kakaoRedirectUri;
 
@@ -49,6 +54,9 @@ public class KakaoOAuthLoginStrategy implements OAuthLoginStrategy {
     @Value("${kakao.user-info-uri}")
     private String kakaoUserInfoUri;
 
+    @Value("${kakao.unlink-uri}")
+    private String kakaoUnlinkUri;
+
     @Transactional
     @Override
     public LoginResult login(String code) {
@@ -97,7 +105,6 @@ private String getAccessToken(String code) {
         body.add("code", code);
 
         HttpEntity<MultiValueMap<String, String>> request = new HttpEntity<>(body, headers);
-        RestTemplate restTemplate = new RestTemplate(); // 나중에 WebClient로 변경
 
         try {
             ResponseEntity<Map> response = restTemplate.postForEntity(kakaoTokenUri, request, Map.class);
@@ -114,7 +121,6 @@ private Long getUserInfo(String accessToken) {
         headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
 
         HttpEntity<Void> request = new HttpEntity<>(headers);
-        RestTemplate restTemplate = new RestTemplate();
 
         try {
             ResponseEntity<Map> response = restTemplate.postForEntity(kakaoUserInfoUri, request, Map.class);
@@ -123,4 +129,27 @@ private Long getUserInfo(String accessToken) {
             throw new AuthException(AuthErrorCode.KAKAO_USERINFO_FAILED);
         }
     }
+
+    @Override
+    public void unlink(Long kakaoUserId) {
+
+        HttpHeaders headers = new HttpHeaders();
+        headers.set("Authorization", "KakaoAK " + kakaoAdminKey);
+        headers.setContentType(MediaType.APPLICATION_FORM_URLENCODED);
+
+        MultiValueMap<String, String> params = new LinkedMultiValueMap<>();
+        params.add("target_id_type", "user_id");
+        params.add("target_id", String.valueOf(kakaoUserId));
+
+        HttpEntity<MultiValueMap<String, String>> request = new HttpEntity<>(params, headers);
+
+        try {
+            ResponseEntity<Map> response = restTemplate.postForEntity(kakaoUnlinkUri, request, Map.class);
+            Long returnedId = ((Number) response.getBody().get("id")).longValue();
+            log.info("[KakaoOAuthLoginStrategy#unlink] 카카오 unlink 성공: 요청 userId={}, 응답 userId={}", kakaoUserId, returnedId);
+        } catch (Exception e) {
+            log.warn("[KakaoOAuthLoginStrategy#unlink] 카카오 unlink 실패: 요청 userId={}, error={}", kakaoUserId, e.getMessage());
+            // 필요 시 큐 적재 등 처리
+        }
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/auth/service/strategy/OAuthLoginStrategy.java b/src/main/java/com/moa/moa_server/domain/auth/service/strategy/OAuthLoginStrategy.java
@@ -4,4 +4,5 @@
 
 public interface OAuthLoginStrategy {
     LoginResult login(String code);
+    void unlink(Long oauthId);
 }
diff --git a/src/main/java/com/moa/moa_server/domain/group/entity/Group.java b/src/main/java/com/moa/moa_server/domain/group/entity/Group.java
@@ -7,6 +7,8 @@
 import org.hibernate.annotations.SQLDelete;
 import org.hibernate.annotations.Where;
 
+import java.time.LocalDateTime;
+
 @Entity
 @Getter
 @NoArgsConstructor(access = AccessLevel.PROTECTED)
@@ -57,4 +59,12 @@ public static Group create(User user, String name, String description, String im
     public boolean isPublicGroup() {
         return this.id != null && this.id.equals(PUBLIC_GROUP_ID);
     }
+
+    public void changeOwner(User newOwner) {
+        this.user = newOwner;
+    }
+
+    public void softDelete() {
+        this.deletedAt = LocalDateTime.now();
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/group/entity/GroupMember.java b/src/main/java/com/moa/moa_server/domain/group/entity/GroupMember.java
@@ -74,4 +74,12 @@ public static GroupMember createAsOwner(User user, Group group) {
                 .joinedAt(LocalDateTime.now())
                 .build();
     }
+
+    public boolean isActiveUser() {
+        return user != null && user.getUserStatus() == User.UserStatus.ACTIVE;
+    }
+
+    public void changeToOwner() {
+        this.role = Role.OWNER;
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/group/repository/GroupMemberRepository.java b/src/main/java/com/moa/moa_server/domain/group/repository/GroupMemberRepository.java
@@ -4,6 +4,7 @@
 import com.moa.moa_server.domain.group.entity.GroupMember;
 import com.moa.moa_server.domain.user.entity.User;
 import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.data.jpa.repository.Modifying;
 import org.springframework.data.jpa.repository.Query;
 import org.springframework.data.repository.query.Param;
 
@@ -21,4 +22,12 @@ public interface GroupMemberRepository extends JpaRepository<GroupMember, Long>,
 
     @Query("SELECT gm.group FROM GroupMember gm WHERE gm.user = :user AND gm.deletedAt IS NULL")
     List<Group> findAllActiveGroupsByUser(@Param("user") User user);
+
+    void deleteAllByUserId(Long userId);
+
+    @Modifying
+    @Query("DELETE FROM GroupMember gm WHERE gm.user.id = :userId")
+    void hardDeleteAllByUserId(@Param("userId") Long userId);
+
+    List<GroupMember> findAllByGroupOrderByJoinedAtAsc(Group group);
 }
diff --git a/src/main/java/com/moa/moa_server/domain/group/repository/GroupRepository.java b/src/main/java/com/moa/moa_server/domain/group/repository/GroupRepository.java
@@ -1,12 +1,15 @@
 package com.moa.moa_server.domain.group.repository;
 
 import com.moa.moa_server.domain.group.entity.Group;
+import com.moa.moa_server.domain.user.entity.User;
 import org.springframework.data.jpa.repository.JpaRepository;
 
+import java.util.List;
 import java.util.Optional;
 
 public interface GroupRepository extends JpaRepository<Group, Long> {
     Optional<Group> findByInviteCode(String inviteCode);
     boolean existsByInviteCode(String inviteCode);
     boolean existsByName(String groupName);
+    List<Group> findAllByUser(User user);
 }
diff --git a/src/main/java/com/moa/moa_server/domain/group/service/GroupService.java b/src/main/java/com/moa/moa_server/domain/group/service/GroupService.java
@@ -19,14 +19,17 @@
 import com.moa.moa_server.domain.vote.handler.VoteErrorCode;
 import com.moa.moa_server.domain.vote.handler.VoteException;
 import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
 
+import java.util.List;
 import java.util.Optional;
 
 @Service
 @RequiredArgsConstructor
+@Slf4j
 public class GroupService {
 
     private static final int MAX_INVITE_CODE_RETRY = 10;
@@ -134,4 +137,47 @@ private String generateUniqueInviteCode() {
         }
         throw new GroupException(GroupErrorCode.INVITE_CODE_GENERATION_FAILED);
     }
+
+    @Transactional
+    public void reassignOrDeleteGroupsOwnedBy(User user) {
+        // 사용자가 소유한 그룹 목록 조회
+        List<Group> ownedGroups = groupRepository.findAllByUser(user);
+
+        for (Group group : ownedGroups) {
+            // 해당 그룹의 멤버 전체를 가입 순으로 조회
+            List<GroupMember> members = groupMemberRepository.findAllByGroupOrderByJoinedAtAsc(group).stream()
+                    .filter(m -> !m.getUser().equals(user)) // 탈퇴한 사용자 제외
+                    .toList();
+
+            // 1순위: 남아있는 활성 관리자(MANAGER) 중 가장 오래된 사용자에게 소유권 승계
+            Optional<GroupMember> admin = members.stream()
+                    .filter(m -> m.getRole() == GroupMember.Role.MANAGER)
+                    .filter(GroupMember::isActiveUser)
+                    .findFirst();
+
+            if (admin.isPresent()) {
+                GroupMember newOwner = admin.get();
+                newOwner.changeToOwner();               // 그룹 멤버 role 변경
+                group.changeOwner(newOwner.getUser());  // 그룹의 소유자 변경
+                continue;
+            }
+
+            // 2순위: 활성 일반 멤버(MEMBER) 중 가장 오래된 사용자에게 소유권 승계
+            Optional<GroupMember> regularMember = members.stream()
+                    .filter(m -> m.getRole() == GroupMember.Role.MEMBER)
+                    .filter(GroupMember::isActiveUser)
+                    .findFirst();
+
+            if (regularMember.isPresent()) {
+                GroupMember newOwner = regularMember.get();
+                newOwner.changeToOwner();
+                group.changeOwner(newOwner.getUser());
+                continue;
+            }
+
+            // 3순위: 그룹에 남은 활성 멤버가 없을 경우 그룹 자체를 소프트 삭제
+            group.softDelete();
+            log.info("[GroupService#reassignOrDeleteGroupsOwnedBy] 활성 멤버가 없어 그룹 {}을(를) 삭제했습니다.", group.getId() != null ? group.getId() : "unknown");
+        }
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/user/controller/UserController.java b/src/main/java/com/moa/moa_server/domain/user/controller/UserController.java
@@ -55,4 +55,12 @@ public ResponseEntity<ApiResponse> updateUserInfo(
         UserUpdateResponse response = userService.updateUserInfo(userId, request);
         return ResponseEntity.ok(new ApiResponse("SUCCESS", response));
     }
+
+    @DeleteMapping
+    public ResponseEntity<ApiResponse> deleteUser(
+            @AuthenticationPrincipal Long userId
+    ) {
+        userService.deleteUser(userId);
+        return ResponseEntity.ok(new ApiResponse("SUCCESS", null));
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/user/entity/User.java b/src/main/java/com/moa/moa_server/domain/user/entity/User.java
@@ -52,4 +52,9 @@ public enum UserStatus {
     public void updateNickname(String nickname) {
         this.nickname = nickname;
     }
+
+    public void withdraw() {
+        this.userStatus = UserStatus.WITHDRAWN;
+        this.withdrawn_at = LocalDateTime.now();
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/user/service/UserService.java b/src/main/java/com/moa/moa_server/domain/user/service/UserService.java
@@ -1,5 +1,11 @@
 package com.moa.moa_server.domain.user.service;
 
+import com.moa.moa_server.domain.auth.entity.OAuth;
+import com.moa.moa_server.domain.auth.handler.AuthErrorCode;
+import com.moa.moa_server.domain.auth.handler.AuthException;
+import com.moa.moa_server.domain.auth.repository.OAuthRepository;
+import com.moa.moa_server.domain.auth.repository.TokenRepository;
+import com.moa.moa_server.domain.auth.service.AuthService;
 import com.moa.moa_server.domain.global.cursor.GroupNameGroupIdCursor;
 import com.moa.moa_server.domain.group.entity.Group;
 import com.moa.moa_server.domain.group.entity.GroupMember;
@@ -13,6 +19,7 @@
 import com.moa.moa_server.domain.user.repository.UserRepository;
 import com.moa.moa_server.domain.user.util.AuthUserValidator;
 import com.moa.moa_server.domain.user.util.UserValidator;
+import com.moa.moa_server.domain.vote.repository.VoteRepository;
 import jakarta.annotation.Nullable;
 import lombok.RequiredArgsConstructor;
 import org.springframework.stereotype.Service;
@@ -30,8 +37,12 @@ public class UserService {
 
     private final UserRepository userRepository;
     private final GroupMemberRepository groupMemberRepository;
+    private final OAuthRepository oauthRepository;
+    private final TokenRepository tokenRepository;
+    private final VoteRepository voteRepository;
 
     private final GroupService groupService;
+    private final AuthService authService;
 
     @Transactional(readOnly = true)
     public GroupLabelResponse getJoinedGroupLabels(Long userId, @Nullable String cursor, @Nullable Integer size) {
@@ -130,4 +141,34 @@ public UserUpdateResponse updateUserInfo(Long userId, UserUpdateRequest request)
         user.updateNickname(newNickname);
         return new UserUpdateResponse(newNickname);
     }
+
+    @Transactional
+    public void deleteUser(Long userId) {
+        User user = userRepository.findById(userId)
+                .orElseThrow(() -> new UserException(UserErrorCode.USER_NOT_FOUND));
+        AuthUserValidator.validateActive(user);
+
+        // 1. 그룹 소유자 승계
+        groupService.reassignOrDeleteGroupsOwnedBy(user);
+
+        // 2. 그룹 멤버 삭제 (hard delete)
+        groupMemberRepository.hardDeleteAllByUserId(userId);
+
+        // 3. 유저가 생성한 투표 삭제 (soft delete)
+        voteRepository.softDeleteAllByUser(user);
+
+        // 4. 카카오 연동 해제
+        Long kakaoUserId = oauthRepository.findByUser(user)
+                .filter(oauth -> oauth.getProviderCode() == OAuth.ProviderCode.KAKAO)
+                .map(OAuth::getId)
+                .orElseThrow(() -> new AuthException(AuthErrorCode.OAUTH_NOT_FOUND));
+        authService.unlinkKakaoAccount(kakaoUserId);
+
+        // 5. 토큰, OAuth 삭제 (hard delete)
+        tokenRepository.deleteByUserId(userId);
+        oauthRepository.deleteByUserId(userId);
+
+        // 6. 회원 상태 변경 (soft delete)
+        user.withdraw();
+    }
 }
diff --git a/src/main/java/com/moa/moa_server/domain/vote/repository/VoteRepository.java b/src/main/java/com/moa/moa_server/domain/vote/repository/VoteRepository.java
@@ -1,7 +1,15 @@
 package com.moa.moa_server.domain.vote.repository;
 
+import com.moa.moa_server.domain.user.entity.User;
 import com.moa.moa_server.domain.vote.entity.Vote;
 import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.data.jpa.repository.Modifying;
+import org.springframework.data.jpa.repository.Query;
+import org.springframework.data.repository.query.Param;
 
 public interface VoteRepository extends JpaRepository<Vote, Long>, VoteRepositoryCustom {
+
+    @Modifying
+    @Query("UPDATE Vote v SET v.deletedAt = CURRENT_TIMESTAMP WHERE v.user = :user")
+    void softDeleteAllByUser(@Param("user") User user);
 }
diff --git a/src/main/resources/application-dev.yaml b/src/main/resources/application-dev.yaml
@@ -14,6 +14,7 @@ spring:
 kakao:
   client-id: ${KAKAO_CLIENT_ID}
   redirect-uri: ${FRONTEND_URL}/auth/callback
+  admin-key: ${KAKAO_ADMIN_KEY}
 
 frontend:
   url: ${FRONTEND_URL}
diff --git a/src/main/resources/application-local.yaml b/src/main/resources/application-local.yaml
@@ -18,6 +18,7 @@ spring:
 kakao:
   client-id: ${KAKAO_CLIENT_ID}
   redirect-uri: http://localhost:8080/api/v1/auth/login/oauth
+  admin-key: ${KAKAO_ADMIN_KEY}
 
 ai:
   server-url: http://localhost:8080/mock-ai
diff --git a/src/main/resources/application-prod.yaml b/src/main/resources/application-prod.yaml
diff --git a/src/main/resources/application.yaml b/src/main/resources/application.yaml

Original file line number	Diff line number	Diff line change
`@@ -55,4 +55,11 @@ public TokenRefreshResponse refreshAccessToken(String refreshToken) {`
`55`	`55`	`public boolean logout(Long userId) {`
`56`	`56`	`return refreshTokenService.deleteRefreshTokenByUserId(userId); // true면 SUCCESS, false면 ALREADY_LOGGED_OUT`
`57`	`57`	`}`
	`58`	`+`
	`59`	`+ public void unlinkKakaoAccount(Long kakaoUserId) {`
	`60`	`+ OAuthLoginStrategy strategy = strategies.get("kakao");`
	`61`	`+ if (strategy != null) {`
	`62`	`+ strategy.unlink(kakaoUserId);`
	`63`	`+ }`
	`64`	`+ }`
`58`	`65`	`}`
Original file line number	Diff line number	Diff line change
`@@ -4,4 +4,5 @@`
`4`	`4`
`5`	`5`	`public interface OAuthLoginStrategy {`
`6`	`6`	`LoginResult login(String code);`
	`7`	`+ void unlink(Long oauthId);`
`7`	`8`	`}`
Original file line number	Diff line number	Diff line change
`@@ -74,4 +74,12 @@ public static GroupMember createAsOwner(User user, Group group) {`
`74`	`74`	`.joinedAt(LocalDateTime.now())`
`75`	`75`	`.build();`
`76`	`76`	`}`
	`77`	`+`
	`78`	`+ public boolean isActiveUser() {`
	`79`	`+ return user != null && user.getUserStatus() == User.UserStatus.ACTIVE;`
	`80`	`+ }`
	`81`	`+`
	`82`	`+ public void changeToOwner() {`
	`83`	`+ this.role = Role.OWNER;`
	`84`	`+ }`
`77`	`85`	`}`