feat: Google API 지원을 위한 Google OAuth2 라우트 추가

Author: MU-Software

app/core/const/google_api.py

@@ -0,0 +1,3 @@
+GOOGLE_OAUTH2_REDIRECT_PATH = "google/oauth2/redirect"
+GOOGLE_OAUTH2_AUTH_URI = "https://accounts.google.com/o/oauth2/auth"
+GOOGLE_OAUTH2_TOKEN_URI = "https://oauth2.googleapis.com/token"  # nosec: B105

app/core/settings.py

@@ -166,6 +166,8 @@
     "event.sponsor",
     "admin_api",
     "participant_portal_api",
+    "external_api",
+    "external_api.google_oauth2",
     # django-constance
     "constance",
 ]
@@ -346,6 +348,7 @@
 )
 
 # Frontend domain settings
+BACKEND_DOMAIN = env("BACKEND_DOMAIN", default="https://rest-api.pycon.kr")
 FRONTEND_DOMAIN = types.SimpleNamespace(
     main=env("FRONTEND_MAIN_URL", default="https://pycon.kr"),
     admin=env("FRONTEND_ADMIN_URL", default="https://admin.pycon.kr"),
@@ -371,6 +374,12 @@
     },
 }
 
+GOOGLE_CLOUD = types.SimpleNamespace(
+    CLIENT_ID=env("GOOGLE_OAUTH_CLIENT_ID", default=""),
+    CLIENT_SECRET=env("GOOGLE_OAUTH_CLIENT_SECRET", default=""),
+    SCOPES=env.list("GOOGLE_OAUTH_SCOPES", default=[]),
+)
+
 # Sentry Settings
 if SENTRY_DSN := env("SENTRY_DSN", default=""):
     SENTRY_TRACES_SAMPLE_RATE = env.float("SENTRY_TRACES_SAMPLE_RATE", default=1.0)

app/core/urls.py

@@ -29,6 +29,7 @@
     path("participant-portal/", include("participant_portal_api.urls")),
     path("event/presentation/", include("event.presentation.urls")),
     path("event/sponsor/", include("event.sponsor.urls")),
+    path("external-api/", include("external_api.urls")),
 ]
 
 urlpatterns = [

app/core/util/google_api.py

@@ -0,0 +1,49 @@
+from urllib.parse import urljoin
+
+from core.const.google_api import GOOGLE_OAUTH2_AUTH_URI, GOOGLE_OAUTH2_REDIRECT_PATH, GOOGLE_OAUTH2_TOKEN_URI
+from django.conf import settings
+from google.oauth2.credentials import Credentials
+from google_auth_oauthlib.flow import Flow
+
+
+def create_oauth_flow() -> Flow | None:
+    if not all(getattr(settings.GOOGLE_CLOUD, attr) for attr in ("CLIENT_ID", "CLIENT_SECRET", "SCOPES")):
+        return None
+
+    return Flow.from_client_config(
+        client_config={
+            "web": {
+                "auth_uri": GOOGLE_OAUTH2_AUTH_URI,
+                "token_uri": GOOGLE_OAUTH2_TOKEN_URI,
+                "client_id": settings.GOOGLE_CLOUD.CLIENT_ID,
+                "client_secret": settings.GOOGLE_CLOUD.CLIENT_SECRET,
+            },
+        },
+        scopes=settings.GOOGLE_CLOUD.SCOPES,
+        redirect_uri=urljoin(settings.BACKEND_DOMAIN, GOOGLE_OAUTH2_REDIRECT_PATH),
+    )
+
+
+def create_authorization_url(
+    flow: Flow, prompt: str = "consent", access_type: str = "offline", include_granted_scopes: bool = False
+) -> str:
+    return flow.authorization_url(
+        prompt=prompt,
+        access_type=access_type,
+        include_granted_scopes="true" if include_granted_scopes else "false",
+    )[0]
+
+
+def fetch_credentials(flow: Flow, code: str) -> Credentials:
+    flow.fetch_token(code=code)
+    return flow.credentials
+
+
+def create_credentials(refresh_token: str) -> Credentials:
+    return Credentials.from_authorized_user_info(
+        {
+            "refresh_token": refresh_token,
+            "client_id": settings.GOOGLE_CLOUD.CLIENT_ID,
+            "client_secret": settings.GOOGLE_CLOUD.CLIENT_SECRET,
+        }
+    )

app/external_api/__init__.py

@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class ExternalAPIConfig(AppConfig):
+    name = "external_api"

app/external_api/apps.py

@@ -0,0 +1,5 @@
+from django.apps import AppConfig
+
+
+class GoogleOAuth2APIConfig(AppConfig):
+    name = "external_api.google_oauth2"

app/external_api/google_oauth2/__init__.py

@@ -0,0 +1,58 @@
+# Generated by Django 5.2 on 2025-08-23 06:01
+
+import uuid
+
+import django.db.models.deletion
+from django.conf import settings
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    initial = True
+
+    dependencies = [
+        migrations.swappable_dependency(settings.AUTH_USER_MODEL),
+    ]
+
+    operations = [
+        migrations.CreateModel(
+            name="GoogleOAuth2",
+            fields=[
+                ("id", models.UUIDField(default=uuid.uuid4, editable=False, primary_key=True, serialize=False)),
+                ("created_at", models.DateTimeField(auto_now_add=True)),
+                ("updated_at", models.DateTimeField(auto_now=True)),
+                ("deleted_at", models.DateTimeField(blank=True, null=True)),
+                ("refresh_token", models.CharField(max_length=512)),
+                (
+                    "created_by",
+                    models.ForeignKey(
+                        null=True,
+                        on_delete=django.db.models.deletion.PROTECT,
+                        related_name="%(class)s_created_by",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+                (
+                    "deleted_by",
+                    models.ForeignKey(
+                        null=True,
+                        on_delete=django.db.models.deletion.PROTECT,
+                        related_name="%(class)s_deleted_by",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+                (
+                    "updated_by",
+                    models.ForeignKey(
+                        null=True,
+                        on_delete=django.db.models.deletion.PROTECT,
+                        related_name="%(class)s_updated_by",
+                        to=settings.AUTH_USER_MODEL,
+                    ),
+                ),
+            ],
+            options={
+                "abstract": False,
+            },
+        ),
+    ]