feat: Better Auth 기반 인증 기능 강화

- 회원정보 수정(프로필/비밀번호) 페이지 추가 (/settings/profile, /settings/password)
- 소셜 로그인 지원 (GitHub, Google, Naver, Kakao) 및 OAuth 리다이렉트 처리
- auth.ts에 role/status 추가, updateUser 설정 및 socialProviders 적용
- 인증 스키마(password, profile) 및 가이드라인 문서 추가

Author: junotb

web/src/app/auth/complete/page.tsx

@@ -0,0 +1,32 @@
+"use client";
+
+import { useEffect } from "react";
+import { useRouter } from "next/navigation";
+import { authClient } from "@/lib/auth-client";
+import { ROLE_REDIRECT_MAP } from "@/constants/auth";
+import Loader from "@/components/common/Loader";
+
+/**
+ * 소셜 로그인 콜백 후 리다이렉트 처리.
+ * Better Auth OAuth callback 후 이 페이지로 이동하며, 역할에 맞는 경로로 리다이렉트합니다.
+ */
+export default function AuthCompletePage() {
+  const router = useRouter();
+
+  useEffect(() => {
+    const redirect = async () => {
+      const { data } = await authClient.getSession();
+      const role = data?.user ? (data.user as { role?: string }).role : undefined;
+      const path = role ? ROLE_REDIRECT_MAP[role] || "/" : "/";
+      router.replace(path);
+    };
+
+    redirect();
+  }, [router]);
+
+  return (
+    <div className="flex min-h-[50vh] items-center justify-center">
+      <Loader />
+    </div>
+  );
+}

web/src/app/settings/SettingsNav.tsx

@@ -0,0 +1,33 @@
+"use client";
+
+import Link from "next/link";
+import { usePathname } from "next/navigation";
+import { cn } from "@/lib/utils";
+
+const NAV_ITEMS = [
+  { href: "/settings/profile", label: "프로필" },
+  { href: "/settings/password", label: "비밀번호" },
+] as const;
+
+export default function SettingsNav() {
+  const pathname = usePathname();
+
+  return (
+    <nav className="flex gap-4 border-b border-border mb-8">
+      {NAV_ITEMS.map(({ href, label }) => (
+        <Link
+          key={href}
+          href={href}
+          className={cn(
+            "pb-3 px-1 text-sm font-medium border-b-2 border-transparent hover:text-foreground transition-colors",
+            pathname === href
+              ? "border-primary text-foreground"
+              : "text-muted-foreground"
+          )}
+        >
+          {label}
+        </Link>
+      ))}
+    </nav>
+  );
+}

web/src/app/settings/layout.tsx

@@ -0,0 +1,39 @@
+import { redirect } from "next/navigation";
+import Link from "next/link";
+import { auth } from "@/lib/auth";
+import { headers } from "next/headers";
+import SettingsNav from "./SettingsNav";
+
+export default async function SettingsLayout({
+  children,
+}: {
+  children: React.ReactNode;
+}) {
+  const session = await auth.api.getSession({
+    headers: await headers(),
+  });
+
+  if (!session) {
+    redirect("/");
+  }
+
+  return (
+    <div className="min-h-screen">
+      <header className="sticky top-0 z-40 w-full border-b bg-background/80 backdrop-blur-sm">
+        <div className="container mx-auto flex h-16 items-center px-4">
+          <Link
+            href="/"
+            className="text-sm text-muted-foreground hover:text-foreground"
+          >
+            ← 홈으로
+          </Link>
+          <span className="ml-4 font-semibold">계정 설정</span>
+        </div>
+      </header>
+      <div className="container mx-auto max-w-2xl py-8 px-4">
+        <SettingsNav />
+        {children}
+      </div>
+    </div>
+  );
+}

web/src/app/settings/page.tsx

@@ -0,0 +1,5 @@
+import { redirect } from "next/navigation";
+
+export default function SettingsPage() {
+  redirect("/settings/profile");
+}

web/src/app/settings/password/page.tsx

@@ -0,0 +1,100 @@
+"use client";
+
+import { useForm } from "react-hook-form";
+import { zodResolver } from "@hookform/resolvers/zod";
+import { authClient } from "@/lib/auth-client";
+import { useToastStore } from "@/stores/useToastStore";
+import {
+  ChangePasswordRequestSchema,
+  type ChangePasswordRequest,
+} from "@/schemas/auth/password";
+import InputField from "@/components/common/InputField";
+import { Button } from "@/components/ui/button";
+import { cn } from "@/lib/utils";
+
+export default function PasswordPage() {
+  const { showToast } = useToastStore();
+
+  const {
+    register,
+    handleSubmit,
+    reset,
+    formState: { errors, isSubmitting },
+  } = useForm<ChangePasswordRequest>({
+    resolver: zodResolver(ChangePasswordRequestSchema),
+    defaultValues: {
+      currentPassword: "",
+      newPassword: "",
+      confirmPassword: "",
+    },
+  });
+
+  const onSubmit = async (payload: ChangePasswordRequest) => {
+    const { data, error } = await authClient.changePassword({
+      currentPassword: payload.currentPassword,
+      newPassword: payload.newPassword,
+      revokeOtherSessions: false,
+    });
+
+    if (error) {
+      showToast(error.message || "비밀번호 변경에 실패했습니다.", "error");
+      return;
+    }
+
+    if (data) {
+      showToast("비밀번호가 변경되었습니다.", "success");
+      reset();
+    }
+  };
+
+  return (
+    <form
+      onSubmit={handleSubmit(onSubmit)}
+      className="flex flex-col gap-6 max-w-md"
+    >
+      <InputField
+        id="currentPassword"
+        label="현재 비밀번호"
+        type="password"
+        register={register}
+        errors={errors}
+        autoComplete="current-password"
+      />
+      <InputField
+        id="newPassword"
+        label="새 비밀번호"
+        type="password"
+        register={register}
+        errors={errors}
+        autoComplete="new-password"
+      />
+      <InputField
+        id="confirmPassword"
+        label="새 비밀번호 확인"
+        type="password"
+        register={register}
+        errors={errors}
+        autoComplete="new-password"
+      />
+      <p className="text-sm text-muted-foreground">
+        비밀번호는 8자 이상, 영문과 숫자를 포함해야 합니다.
+      </p>
+      <Button
+        type="submit"
+        disabled={isSubmitting}
+        className={cn(
+          "w-fit rounded-xl px-6 py-2 font-bold shadow-lg shadow-primary/20",
+          "disabled:opacity-50"
+        )}
+      >
+        {isSubmitting && (
+          <span
+            className="mr-2 inline-block size-4 shrink-0 animate-spin rounded-full border-2 border-current border-t-transparent"
+            aria-hidden
+          />
+        )}
+        비밀번호 변경
+      </Button>
+    </form>
+  );
+}

web/src/app/settings/profile/page.tsx

@@ -0,0 +1,106 @@
+"use client";
+
+import { useEffect, useState } from "react";
+import { useForm } from "react-hook-form";
+import { zodResolver } from "@hookform/resolvers/zod";
+import { authClient } from "@/lib/auth-client";
+import { useToastStore } from "@/stores/useToastStore";
+import {
+  ProfileUpdateRequestSchema,
+  type ProfileUpdateRequest,
+} from "@/schemas/auth/profile";
+import { Button } from "@/components/ui/button";
+import InputField from "@/components/common/InputField";
+import { cn } from "@/lib/utils";
+
+export default function ProfilePage() {
+  const [isLoading, setIsLoading] = useState(true);
+  const { showToast } = useToastStore();
+
+  const {
+    register,
+    handleSubmit,
+    reset,
+    formState: { errors, isSubmitting },
+  } = useForm<ProfileUpdateRequest>({
+    resolver: zodResolver(ProfileUpdateRequestSchema),
+    defaultValues: { name: "", image: "" },
+  });
+
+  useEffect(() => {
+    const load = async () => {
+      const { data } = await authClient.getSession();
+      if (data?.user) {
+        const u = data.user as { name?: string; image?: string | null };
+        reset({
+          name: u.name || "",
+          image: u.image || "",
+        });
+      }
+      setIsLoading(false);
+    };
+    load();
+  }, [reset]);
+
+  const onSubmit = async (payload: ProfileUpdateRequest) => {
+    const { data, error } = await authClient.updateUser({
+      name: payload.name.trim(),
+      image: payload.image?.trim() || undefined,
+    });
+
+    if (error) {
+      showToast(error.message || "수정에 실패했습니다.", "error");
+      return;
+    }
+
+    if (data) {
+      showToast("프로필이 수정되었습니다.", "success");
+    }
+  };
+
+  if (isLoading) {
+    return (
+      <div className="flex min-h-[200px] items-center justify-center">
+        <span className="inline-block size-6 animate-spin rounded-full border-2 border-current border-t-transparent" />
+      </div>
+    );
+  }
+
+  return (
+    <form
+      onSubmit={handleSubmit(onSubmit)}
+      className="flex flex-col gap-6 max-w-md"
+    >
+      <InputField
+        id="name"
+        label="이름"
+        register={register}
+        errors={errors}
+        autoComplete="name"
+      />
+      <InputField
+        id="image"
+        label="프로필 이미지 URL"
+        register={register}
+        errors={errors}
+        placeholder="https://..."
+      />
+      <Button
+        type="submit"
+        disabled={isSubmitting}
+        className={cn(
+          "w-fit rounded-xl px-6 py-2 font-bold shadow-lg shadow-primary/20",
+          "disabled:opacity-50"
+        )}
+      >
+        {isSubmitting && (
+          <span
+            className="mr-2 inline-block size-4 shrink-0 animate-spin rounded-full border-2 border-current border-t-transparent"
+            aria-hidden
+          />
+        )}
+        저장
+      </Button>
+    </form>
+  );
+}

web/src/components/auth/AuthModalContainer.tsx

@@ -11,6 +11,7 @@ import { useAuthModalStore } from "@/stores/useAuthModalStore";
 import { useToastStore } from "@/stores/useToastStore";
 import SignInForm from "@/components/auth/SignInForm";
 import SignUpForm from "@/components/auth/SignUpForm";
+import SocialLoginButtons from "@/components/auth/SocialLoginButtons";
 import Loader from "@/components/common/Loader";
 import { authClient } from "@/lib/auth-client";
 import { Dialog, DialogContent } from "@/components/ui/dialog";
@@ -105,6 +106,12 @@ export default function AuthModalContainer() {
           <SignUpForm error={error} onSubmit={handleSignUp} />
         )}
 
+        {!isLoading && (
+          <div className="mt-4 pt-4 border-t border-border">
+            <SocialLoginButtons />
+          </div>
+        )}
+
         <Button
           variant="link"
           onClick={() =>

web/src/components/auth/SocialLoginButtons.tsx

@@ -0,0 +1,48 @@
+"use client";
+
+import { authClient } from "@/lib/auth-client";
+import { Button } from "@/components/ui/button";
+
+const SOCIAL_PROVIDERS = [
+  { provider: "github" as const, label: "GitHub" },
+  { provider: "google" as const, label: "Google" },
+  { provider: "naver" as const, label: "네이버" },
+  { provider: "kakao" as const, label: "카카오" },
+] as const;
+
+/**
+ * 소셜 로그인 버튼 그룹.
+ * 로그인/회원가입 모달에서 공통 사용.
+ * OAuth 리다이렉트 후 /auth/complete에서 역할 기반 리다이렉트 처리.
+ */
+export default function SocialLoginButtons() {
+  const handleSocialSignIn = (
+    provider: "github" | "google" | "naver" | "kakao"
+  ) => {
+    authClient.signIn.social({
+      provider,
+      callbackURL: "/auth/complete",
+    });
+  };
+
+  return (
+    <div className="flex flex-col gap-2 w-full">
+      <p className="text-sm text-muted-foreground text-center">
+        또는 소셜 계정으로 계속하기
+      </p>
+      <div className="grid grid-cols-2 gap-2">
+        {SOCIAL_PROVIDERS.map(({ provider, label }) => (
+          <Button
+            key={provider}
+            type="button"
+            variant="outline"
+            className="w-full"
+            onClick={() => handleSocialSignIn(provider)}
+          >
+            {label}
+          </Button>
+        ))}
+      </div>
+    </div>
+  );
+}