import 'dart:async'; import 'dart:convert'; import 'package:flutter/foundation.dart'; import 'package:dartz/dartz.dart'; import 'package:flutter_secure_storage/flutter_secure_storage.dart'; import 'package:injectable/injectable.dart'; import 'package:superport/core/errors/failures.dart'; import 'package:superport/data/datasources/remote/auth_remote_datasource.dart'; import 'package:superport/data/models/auth/auth_user.dart'; import 'package:superport/data/models/auth/login_request.dart'; import 'package:superport/data/models/auth/login_response.dart'; import 'package:superport/data/models/auth/logout_request.dart'; import 'package:superport/data/models/auth/refresh_token_request.dart'; import 'package:superport/data/models/auth/token_response.dart'; import 'package:superport/core/config/environment.dart' as env; import 'package:superport/services/mock_data_service.dart'; abstract class AuthService { Future> login(LoginRequest request); Future> logout(); Future> refreshToken(); Future isLoggedIn(); Future getCurrentUser(); Future getAccessToken(); Future getRefreshToken(); Future clearSession(); Stream get authStateChanges; } @LazySingleton(as: AuthService) class AuthServiceImpl implements AuthService { final AuthRemoteDataSource _authRemoteDataSource; final FlutterSecureStorage _secureStorage; static const String _accessTokenKey = 'access_token'; static const String _refreshTokenKey = 'refresh_token'; static const String _userKey = 'user'; static const String _tokenExpiryKey = 'token_expiry'; final _authStateController = StreamController.broadcast(); AuthServiceImpl( this._authRemoteDataSource, this._secureStorage, ); @override Future> login(LoginRequest request) async { try { debugPrint('[AuthService] login 시작 - useApi: ${env.Environment.useApi}'); // Mock 모드일 때 if (!env.Environment.useApi) { debugPrint('[AuthService] Mock 모드로 로그인 처리'); return _mockLogin(request); } // API 모드일 때 debugPrint('[AuthService] API 모드로 로그인 처리'); final result = await _authRemoteDataSource.login(request); return await result.fold( (failure) async => Left(failure), (loginResponse) async { // 토큰 및 사용자 정보 저장 await _saveTokens( loginResponse.accessToken, loginResponse.refreshToken, loginResponse.expiresIn, ); await _saveUser(loginResponse.user); // 인증 상태 변경 알림 _authStateController.add(true); return Right(loginResponse); }, ); } catch (e, stackTrace) { debugPrint('[AuthService] login 예외 발생: $e'); debugPrint('[AuthService] Stack trace: $stackTrace'); return Left(ServerFailure(message: '로그인 처리 중 오류가 발생했습니다.')); } } Future> _mockLogin(LoginRequest request) async { try { // Mock 데이터 서비스의 사용자 확인 final mockService = MockDataService(); final users = mockService.getAllUsers(); // 사용자 찾기 final user = users.firstWhere( (u) => u.email == request.email, orElse: () => throw Exception('사용자를 찾을 수 없습니다.'), ); // 비밀번호 확인 (Mock에서는 간단하게 처리) if (request.password != 'admin123' && request.password != 'password123') { return Left(AuthenticationFailure(message: '잘못된 비밀번호입니다.')); } // Mock 토큰 생성 final mockAccessToken = 'mock_access_token_${DateTime.now().millisecondsSinceEpoch}'; final mockRefreshToken = 'mock_refresh_token_${DateTime.now().millisecondsSinceEpoch}'; // Mock 로그인 응답 생성 final loginResponse = LoginResponse( accessToken: mockAccessToken, refreshToken: mockRefreshToken, tokenType: 'Bearer', expiresIn: 3600, user: AuthUser( id: user.id ?? 0, username: user.username ?? '', email: user.email ?? request.email ?? '', name: user.name, role: user.role, ), ); // 토큰 및 사용자 정보 저장 await _saveTokens( loginResponse.accessToken, loginResponse.refreshToken, loginResponse.expiresIn, ); await _saveUser(loginResponse.user); // 인증 상태 변경 알림 _authStateController.add(true); debugPrint('[AuthService] Mock 로그인 성공'); return Right(loginResponse); } catch (e) { debugPrint('[AuthService] Mock 로그인 실패: $e'); return Left(ServerFailure(message: '로그인 처리 중 오류가 발생했습니다.')); } } @override Future> logout() async { try { final refreshToken = await getRefreshToken(); if (refreshToken != null) { final request = LogoutRequest(refreshToken: refreshToken); await _authRemoteDataSource.logout(request); } await clearSession(); _authStateController.add(false); return const Right(null); } catch (e) { // 로그아웃 API 실패 시에도 로컬 세션은 정리 await clearSession(); _authStateController.add(false); return const Right(null); } } @override Future> refreshToken() async { try { final refreshToken = await getRefreshToken(); if (refreshToken == null) { return Left(AuthenticationFailure( message: '리프레시 토큰이 없습니다. 다시 로그인해주세요.', )); } final request = RefreshTokenRequest(refreshToken: refreshToken); final result = await _authRemoteDataSource.refreshToken(request); return await result.fold( (failure) async { // 토큰 갱신 실패 시 세션 정리 await clearSession(); _authStateController.add(false); return Left(failure); }, (tokenResponse) async { // 새 토큰 저장 await _saveTokens( tokenResponse.accessToken, tokenResponse.refreshToken, tokenResponse.expiresIn, ); return Right(tokenResponse); }, ); } catch (e) { return Left(ServerFailure(message: '토큰 갱신 중 오류가 발생했습니다.')); } } @override Future isLoggedIn() async { try { final accessToken = await getAccessToken(); if (accessToken == null) return false; // 토큰 만료 확인 final expiryStr = await _secureStorage.read(key: _tokenExpiryKey); if (expiryStr != null) { final expiry = DateTime.parse(expiryStr); if (DateTime.now().isAfter(expiry)) { // 토큰이 만료되었으면 갱신 시도 final refreshResult = await refreshToken(); return refreshResult.isRight(); } } return true; } catch (e) { return false; } } @override Future getCurrentUser() async { try { final userStr = await _secureStorage.read(key: _userKey); if (userStr == null) return null; final userJson = jsonDecode(userStr); return AuthUser.fromJson(userJson); } catch (e) { return null; } } @override Future getAccessToken() async { try { final token = await _secureStorage.read(key: _accessTokenKey); if (token != null && token.length > 20) { debugPrint('[AuthService] getAccessToken: Found (${token.substring(0, 20)}...)'); } else if (token != null) { debugPrint('[AuthService] getAccessToken: Found (${token})'); } else { debugPrint('[AuthService] getAccessToken: Not found'); } return token; } catch (e) { debugPrint('[AuthService] getAccessToken error: $e'); return null; } } @override Future getRefreshToken() async { try { return await _secureStorage.read(key: _refreshTokenKey); } catch (e) { return null; } } @override Future clearSession() async { try { await _secureStorage.delete(key: _accessTokenKey); await _secureStorage.delete(key: _refreshTokenKey); await _secureStorage.delete(key: _userKey); await _secureStorage.delete(key: _tokenExpiryKey); } catch (e) { // 에러가 발생해도 계속 진행 } } @override Stream get authStateChanges => _authStateController.stream; Future _saveTokens( String accessToken, String refreshToken, int expiresIn, ) async { debugPrint('[AuthService] Saving tokens...'); final accessTokenPreview = accessToken.length > 20 ? '${accessToken.substring(0, 20)}...' : accessToken; final refreshTokenPreview = refreshToken.length > 20 ? '${refreshToken.substring(0, 20)}...' : refreshToken; debugPrint('[AuthService] Access token: $accessTokenPreview'); debugPrint('[AuthService] Refresh token: $refreshTokenPreview'); debugPrint('[AuthService] Expires in: $expiresIn seconds'); await _secureStorage.write(key: _accessTokenKey, value: accessToken); await _secureStorage.write(key: _refreshTokenKey, value: refreshToken); // 토큰 만료 시간 저장 (현재 시간 + expiresIn 초) final expiry = DateTime.now().add(Duration(seconds: expiresIn)); await _secureStorage.write( key: _tokenExpiryKey, value: expiry.toIso8601String(), ); debugPrint('[AuthService] Tokens saved successfully'); } Future _saveUser(AuthUser user) async { final userJson = jsonEncode(user.toJson()); await _secureStorage.write(key: _userKey, value: userJson); } void dispose() { _authStateController.close(); } }