feat google oauth

internal/model/user/user.go

@@ -43,3 +43,31 @@ type EmailLoginResponse struct {
 	Token     string `json:"token"`
 	ExpiresAt int64  `json:"expires_at"`
 }
+
+type GoogleAuthUrlRequest struct {
+	RedirectURI string `form:"redirect_uri" binding:"required"`
+	State       string `form:"state" binding:"required"`
+}
+
+type GoogleAuthUrlResponse struct {
+	AuthURL string `json:"auth_url"`
+}
+
+type GoogleOAuthCallbackRequest struct {
+	Code        string `json:"code" binding:"required"`
+	State       string `json:"state" binding:"required"`
+	RedirectURI string `json:"redirect_uri" binding:"required"`
+}
+
+type GoogleOAuthCallbackResponse struct {
+	Token     string `json:"token"`
+	ExpiresAt int64  `json:"expires_at"`
+}
+
+type GoogleUserInfo struct {
+	ID            string `json:"id"`
+	Email         string `json:"email"`
+	Name          string `json:"name"`
+	Picture       string `json:"picture"`
+	VerifiedEmail bool   `json:"verified_email"`
+}

internal/service/user_service.go

@@ -2,10 +2,14 @@ package service
 
 import (
 	"context"
+	"encoding/json"
 	"errors"
 	"fmt"
 	"math/rand"
+	"net/http"
+	"net/url"
 
+	"gitea.com/texpixel/document_ai/internal/model/user"
 	"gitea.com/texpixel/document_ai/internal/storage/cache"
 	"gitea.com/texpixel/document_ai/internal/storage/dao"
 	"gitea.com/texpixel/document_ai/pkg/common"
@@ -159,3 +163,114 @@ func (svc *UserService) LoginByEmail(ctx context.Context, email, password string
 
 	return user.ID, nil
 }
+
+type googleTokenResponse struct {
+	AccessToken string `json:"access_token"`
+	IDToken     string `json:"id_token"`
+	ExpiresIn   int    `json:"expires_in"`
+	TokenType   string `json:"token_type"`
+}
+
+func (svc *UserService) ExchangeGoogleCodeAndGetUserInfo(ctx context.Context, clientID, clientSecret, code, redirectURI string) (*model.GoogleUserInfo, error) {
+	tokenURL := "https://oauth2.googleapis.com/token"
+	formData := url.Values{
+		"client_id":     {clientID},
+		"client_secret": {clientSecret},
+		"code":          {code},
+		"grant_type":    {"authorization_code"},
+		"redirect_uri":  {redirectURI},
+	}
+
+	resp, err := http.PostForm(tokenURL, formData)
+	if err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "exchange code failed", "error", err)
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var tokenResp googleTokenResponse
+	if err := json.NewDecoder(resp.Body).Decode(&tokenResp); err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "decode token response failed", "error", err)
+		return nil, err
+	}
+
+	if tokenResp.AccessToken == "" {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "no access token in response")
+		return nil, errors.New("no access token in response")
+	}
+
+	userInfo, err := svc.getGoogleUserInfo(ctx, tokenResp.AccessToken)
+	if err != nil {
+		log.Error(ctx, "func", "ExchangeGoogleCodeAndGetUserInfo", "msg", "get user info failed", "error", err)
+		return nil, err
+	}
+
+	return &model.GoogleUserInfo{
+		ID:    userInfo.ID,
+		Email: userInfo.Email,
+		Name:  userInfo.Name,
+	}, nil
+}
+
+func (svc *UserService) getGoogleUserInfo(ctx context.Context, accessToken string) (*model.GoogleUserInfo, error) {
+	req, err := http.NewRequestWithContext(ctx, "GET", "https://www.googleapis.com/oauth2/v2/userinfo", nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Set("Authorization", "Bearer "+accessToken)
+
+	client := &http.Client{}
+	resp, err := client.Do(req)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	var userInfo model.GoogleUserInfo
+	if err := json.NewDecoder(resp.Body).Decode(&userInfo); err != nil {
+		return nil, err
+	}
+
+	return &userInfo, nil
+}
+
+func (svc *UserService) FindOrCreateGoogleUser(ctx context.Context, userInfo *model.GoogleUserInfo) (uid int64, err error) {
+	existingUser, err := svc.userDao.GetByGoogleID(dao.DB.WithContext(ctx), userInfo.ID)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "get user by google id error", "error", err)
+		return 0, err
+	}
+
+	if existingUser != nil {
+		return existingUser.ID, nil
+	}
+
+	existingUser, err = svc.userDao.GetByEmail(dao.DB.WithContext(ctx), userInfo.Email)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "get user by email error", "error", err)
+		return 0, err
+	}
+
+	if existingUser != nil {
+		existingUser.GoogleID = userInfo.ID
+		err = svc.userDao.Update(dao.DB.WithContext(ctx), existingUser)
+		if err != nil {
+			log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "update user google id error", "error", err)
+			return 0, err
+		}
+		return existingUser.ID, nil
+	}
+
+	user := &dao.User{
+		Email:    userInfo.Email,
+		GoogleID: userInfo.ID,
+		Username: userInfo.Name,
+	}
+	err = svc.userDao.Create(dao.DB.WithContext(ctx), user)
+	if err != nil {
+		log.Error(ctx, "func", "FindOrCreateGoogleUser", "msg", "create user error", "error", err)
+		return 0, err
+	}
+
+	return user.ID, nil
+}

internal/storage/dao/user.go

@@ -14,6 +14,7 @@ type User struct {
 	Password      string `gorm:"column:password" json:"password"`
 	WechatOpenID  string `gorm:"column:wechat_open_id" json:"wechat_open_id"`
 	WechatUnionID string `gorm:"column:wechat_union_id" json:"wechat_union_id"`
+	GoogleID      string `gorm:"column:google_id" json:"google_id"`
 }
 
 func (u *User) TableName() string {
@@ -63,3 +64,18 @@ func (dao *UserDao) GetByEmail(tx *gorm.DB, email string) (*User, error) {
 	}
 	return &user, nil
 }
+
+func (dao *UserDao) GetByGoogleID(tx *gorm.DB, googleID string) (*User, error) {
+	var user User
+	if err := tx.Where("google_id = ?", googleID).First(&user).Error; err != nil {
+		if errors.Is(err, gorm.ErrRecordNotFound) {
+			return nil, nil
+		}
+		return nil, err
+	}
+	return &user, nil
+}
+
+func (dao *UserDao) Update(tx *gorm.DB, user *User) error {
+	return tx.Save(user).Error
+}