CLAP-294 Feat: 비밀번호 재설정 이메일 전송 및 인증번호 검증 API 구현

<footer>
- 관련: #346

Author: joowojr

src/main/java/clap/server/adapter/inbound/web/member/EmailVerificationController.java

@@ -0,0 +1,35 @@
+package clap.server.adapter.inbound.web.member;
+
+import clap.server.adapter.inbound.security.service.SecurityUserDetails;
+import clap.server.application.port.inbound.member.SendVerificationEmailUsecase;
+import clap.server.application.port.inbound.member.VerifyEmailCodeUsecase;
+import clap.server.common.annotation.architecture.WebAdapter;
+import io.swagger.v3.oas.annotations.Operation;
+import io.swagger.v3.oas.annotations.tags.Tag;
+import lombok.RequiredArgsConstructor;
+import org.springframework.security.core.annotation.AuthenticationPrincipal;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@Tag(name = "00. Auth [인증번호]")
+@WebAdapter
+@RequiredArgsConstructor
+@RequestMapping("/api/members")
+public class EmailVerificationController {
+    private final SendVerificationEmailUsecase sendVerificationEmailUsecase;
+    private final VerifyEmailCodeUsecase verifyEmailCodeUsecase;
+
+    @Operation(summary = "인증번호 전송 API")
+    @PostMapping("/verification/email")
+    public void sendVerificationEmail(@AuthenticationPrincipal SecurityUserDetails userInfo){
+        sendVerificationEmailUsecase.sendVerificationCode(userInfo.getUserId());
+    }
+
+    @Operation(summary = "인증번호 검증 API")
+    @PostMapping("/verification")
+    public void sendVerificationEmail(@AuthenticationPrincipal SecurityUserDetails userInfo,
+                                      @RequestParam String code){
+        verifyEmailCodeUsecase.verifyEmailCode(userInfo.getUserId(), code);
+    }
+}

src/main/java/clap/server/application/port/inbound/member/VerifyEmailCodeUsecase.java

@@ -1,5 +1,5 @@
 package clap.server.application.port.inbound.member;
 
 public interface VerifyEmailCodeUsecase {
-    void verifyEmailCode(Long memberId);
+    void verifyEmailCode(Long memberId, String code);
 }

src/main/java/clap/server/application/service/auth/EmailVerificationService.java

@@ -0,0 +1,51 @@
+package clap.server.application.service.auth;
+
+import clap.server.application.port.inbound.domain.MemberService;
+import clap.server.application.port.inbound.member.SendVerificationEmailUsecase;
+import clap.server.application.port.inbound.member.VerifyEmailCodeUsecase;
+import clap.server.application.port.outbound.auth.otp.CommandOtpPort;
+import clap.server.application.port.outbound.auth.otp.LoadOtpPort;
+import clap.server.application.port.outbound.email.SendEmailPort;
+import clap.server.common.annotation.architecture.ApplicationService;
+import clap.server.common.utils.VerificationCodeGenerator;
+import clap.server.domain.model.auth.Otp;
+import clap.server.domain.model.member.Member;
+import clap.server.exception.ApplicationException;
+import clap.server.exception.code.AuthErrorCode;
+import lombok.RequiredArgsConstructor;
+import org.springframework.transaction.annotation.Transactional;
+
+@ApplicationService
+@RequiredArgsConstructor
+public class EmailVerificationService implements SendVerificationEmailUsecase, VerifyEmailCodeUsecase {
+    private final MemberService memberService;
+    private final SendEmailPort sendEmailPort;
+    private final CommandOtpPort commandOtpPort;
+    private final LoadOtpPort loadOtpPort;
+
+    @Override
+    @Transactional
+    public void sendVerificationCode(Long memberId) {
+        Member member = memberService.findActiveMember(memberId);
+        String verificationCode = VerificationCodeGenerator.generateRandomCode();
+        commandOtpPort.save(new Otp(member.getMemberInfo().getEmail(), verificationCode));
+        sendEmailPort.sendVerificationEmail(member.getMemberInfo().getEmail(), member.getNickname(), verificationCode);
+    }
+
+
+    @Override
+    @Transactional
+    public void verifyEmailCode(Long memberId, String code) {
+        Member member = memberService.findActiveMember(memberId);
+        Otp otp = loadOtpPort.findByEmail(member.getMemberInfo().getEmail()).orElseThrow(
+                () -> new ApplicationException(AuthErrorCode.VERIFICATION_CODE_EXPIRED)
+        );
+
+        if(!code.equals(otp.code())){
+            throw new ApplicationException(AuthErrorCode.VERIFICATION_CODE_MISMATCH);
+        }
+        else {
+            commandOtpPort.deleteByEmail(member.getMemberInfo().getEmail());
+        }
+    }
+}

src/main/java/clap/server/common/utils/VerificationCodeGenerator.java

@@ -0,0 +1,17 @@
+package clap.server.common.utils;
+
+import java.util.Random;
+
+public class VerificationCodeGenerator {
+
+    public static String generateRandomCode() {
+        Random random = new Random();
+        StringBuilder code = new StringBuilder();
+
+        for (int i = 0; i < 6; i++) {
+            code.append(random.nextInt(10));
+        }
+
+        return code.toString();
+    }
+}

src/main/java/clap/server/exception/code/AuthErrorCode.java

@@ -24,6 +24,8 @@ public enum AuthErrorCode implements BaseErrorCode {
     ACCOUNT_IS_LOCKED(HttpStatus.UNAUTHORIZED, "AUTH_015", "접근할 수 없는 계정입니다."),
     LOGIN_REQUEST_FAILED(HttpStatus.UNAUTHORIZED, "AUTH_016", "로그인에 실패하였습니다."),
     REFRESH_TOKEN_MISMATCHED(HttpStatus.UNAUTHORIZED, "AUTH_017", "리프레시 토큰이 일치하지 않습니다"),
+    VERIFICATION_CODE_MISMATCH(HttpStatus.BAD_REQUEST, "AUTH_018", "인증번호가 일치하지 않습니다."),
+    VERIFICATION_CODE_EXPIRED(HttpStatus.BAD_REQUEST, "AUTH_019", "만료된 인증번호입니다.")
     ;
 
     private final HttpStatus httpStatus;