로그관리 로직 커밋

2026-02-19 11:13:40 +09:00
parent 5f5eabca19
commit 435f60dcac
12 changed files with 460 additions and 56 deletions
--- a/src/main/java/com/kamco/cd/training/config/api/ApiLogFunction.java
+++ b/src/main/java/com/kamco/cd/training/config/api/ApiLogFunction.java
@@ -5,11 +5,14 @@ import com.kamco.cd.training.log.dto.EventType;
 import com.kamco.cd.training.menu.dto.MenuDto;
 import jakarta.servlet.http.HttpServletRequest;
 import java.io.UnsupportedEncodingException;
+import java.util.Comparator;
 import java.util.List;
 import java.util.Map;
 import java.util.stream.Collectors;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.web.util.ContentCachingRequestWrapper;

+@Slf4j
 public class ApiLogFunction {

  // 클라이언트 IP 추출
@@ -34,6 +37,14 @@ public class ApiLogFunction {
    return ip;
  }

+  public static String getXFowardedForIp(HttpServletRequest request) {
+    String ip = request.getHeader("X-Forwarded-For");
+    if (ip != null) {
+      ip = ip.split(",")[0].trim();
+    }
+    return ip;
+  }
+
  // 사용자 ID 추출 예시 (Spring Security 기준)
  public static String getUserId(HttpServletRequest request) {
    try {
@@ -47,20 +58,20 @@ public class ApiLogFunction {
    String method = request.getMethod().toUpperCase();
    String uri = request.getRequestURI().toLowerCase();

-    // URL 기반 DOWNLOAD/PRINT 분류
+    // URL 기반 DOWNLOAD/PRINT 분류 -> /download는 FileDownloadInterceptor로 옮김
    if (uri.contains("/download") || uri.contains("/export")) {
      return EventType.DOWNLOAD;
    }
    if (uri.contains("/print")) {
-      return EventType.PRINT;
+      return EventType.OTHER;
    }

    // 일반 CRUD
    return switch (method) {
-      case "POST" -> EventType.CREATE;
-      case "GET" -> EventType.READ;
-      case "DELETE" -> EventType.DELETE;
-      case "PUT", "PATCH" -> EventType.UPDATE;
+      case "POST" -> EventType.ADDED;
+      case "GET" -> EventType.LIST;
+      case "DELETE" -> EventType.REMOVE;
+      case "PUT", "PATCH" -> EventType.MODIFIED;
      default -> EventType.OTHER;
    };
  }
@@ -121,12 +132,22 @@ public class ApiLogFunction {

  public static String getUriMenuInfo(List<MenuDto.Basic> menuList, String uri) {

-    MenuDto.Basic m =
+    String normalizedUri = uri.replace("/api", "");
+    MenuDto.Basic basic =
        menuList.stream()
-            .filter(menu -> menu.getMenuApiUrl() != null && uri.contains(menu.getMenuApiUrl()))
-            .findFirst()
+            .filter(
+                menu -> menu.getMenuUrl() != null && normalizedUri.startsWith(menu.getMenuUrl()))
+            .max(Comparator.comparingInt(m -> m.getMenuUrl().length()))
            .orElse(null);

-    return m != null ? m.getMenuUid() : "SYSTEM";
+    return basic != null ? basic.getMenuUid() : "SYSTEM";
+  }
+
+  public static String cutRequestBody(String value) {
+    int MAX_LEN = 255;
+    if (value == null) {
+      return null;
+    }
+    return value.length() <= MAX_LEN ? value : value.substring(0, MAX_LEN);
  }
 }
--- a/src/main/java/com/kamco/cd/training/config/api/ApiResponseAdvice.java
+++ b/src/main/java/com/kamco/cd/training/config/api/ApiResponseAdvice.java
@@ -2,10 +2,17 @@ package com.kamco.cd.training.config.api;

 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.kamco.cd.training.auth.CustomUserDetails;
+import com.kamco.cd.training.common.utils.HeaderUtil;
+import com.kamco.cd.training.log.dto.EventType;
+import com.kamco.cd.training.menu.dto.MenuDto;
 import com.kamco.cd.training.menu.service.MenuService;
 import com.kamco.cd.training.postgres.entity.AuditLogEntity;
 import com.kamco.cd.training.postgres.repository.log.AuditLogRepository;
 import jakarta.servlet.http.HttpServletRequest;
+import java.util.LinkedHashMap;
+import java.util.List;
+import java.util.Optional;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.core.MethodParameter;
 import org.springframework.http.MediaType;
@@ -23,6 +30,7 @@ import org.springframework.web.util.ContentCachingRequestWrapper;
 *
 * <p>createOK() → 201 CREATED ok() → 200 OK deleteOk() → 204 NO_CONTENT
 */
+@Slf4j
@RestControllerAdvice
 public class ApiResponseAdvice implements ResponseBodyAdvice<Object> {

@@ -61,12 +69,27 @@ public class ApiResponseAdvice implements ResponseBodyAdvice<Object> {
    if (body instanceof ApiResponseDto<?> apiResponse) {
      response.setStatusCode(apiResponse.getHttpStatus());

-      String ip = ApiLogFunction.getClientIp(servletRequest);
-      Long userid = null;
+      String actionType = HeaderUtil.get(servletRequest, "kamco-action-type");
+      // actionType 이 없으면 로그 저장하지 않기 || download 는 FileDownloadInterceptor 에서 하기
+      // (file down URL prefix 추가는 WebConfig.java 에 하기)
+      if (actionType == null || actionType.equalsIgnoreCase("download")) {
+        return body;
+      }

-      if (servletRequest.getUserPrincipal() instanceof UsernamePasswordAuthenticationToken auth
-          && auth.getPrincipal() instanceof CustomUserDetails customUserDetails) {
-        userid = customUserDetails.getMember().getId();
+      String ip =
+          Optional.ofNullable(HeaderUtil.get(servletRequest, "kamco-user-ip"))
+              .orElseGet(() -> ApiLogFunction.getXFowardedForIp(servletRequest));
+      Long userid = null;
+      String loginAttemptId = null;
+
+      // 로그인 시도할 때
+      if (servletRequest.getRequestURI().contains("/api/auth/signin")) {
+        loginAttemptId = HeaderUtil.get(servletRequest, "kamco-login-attempt-id");
+      } else {
+        if (servletRequest.getUserPrincipal() instanceof UsernamePasswordAuthenticationToken auth
+            && auth.getPrincipal() instanceof CustomUserDetails customUserDetails) {
+          userid = customUserDetails.getMember().getId();
+        }
      }

      String requestBody;
@@ -84,17 +107,33 @@ public class ApiResponseAdvice implements ResponseBodyAdvice<Object> {
        requestBody = maskSensitiveFields(requestBody);
      }

+      List<?> list = menuService.getFindAll();
+      List<MenuDto.Basic> result =
+          list.stream()
+              .map(
+                  item -> {
+                    if (item instanceof LinkedHashMap<?, ?> map) {
+                      return objectMapper.convertValue(map, MenuDto.Basic.class);
+                    } else if (item instanceof MenuDto.Basic dto) {
+                      return dto;
+                    } else {
+                      throw new IllegalStateException("Unsupported cache type: " + item.getClass());
+                    }
+                  })
+              .toList();
+
      AuditLogEntity log =
          new AuditLogEntity(
              userid,
-              ApiLogFunction.getEventType(servletRequest),
+              EventType.fromName(actionType),
              ApiLogFunction.isSuccessFail(apiResponse),
-              ApiLogFunction.getUriMenuInfo(
-                  menuService.getFindAll(), servletRequest.getRequestURI()),
+              ApiLogFunction.getUriMenuInfo(result, servletRequest.getRequestURI()),
              ip,
              servletRequest.getRequestURI(),
-              requestBody,
-              apiResponse.getErrorLogUid());
+              ApiLogFunction.cutRequestBody(requestBody),
+              apiResponse.getErrorLogUid(),
+              null,
+              loginAttemptId);
      auditLogRepository.save(log);
    }