API 로그저장, ExceptionHandler 저장, 감사,에러로그API 작업 진행중

src/main/java/com/kamco/cd/kamcoback/config/api/ApiLogFilter.java

@@ -0,0 +1,29 @@
+package com.kamco.cd.kamcoback.config.api;
+
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.stereotype.Component;
+import org.springframework.web.filter.OncePerRequestFilter;
+import org.springframework.web.util.ContentCachingRequestWrapper;
+import org.springframework.web.util.ContentCachingResponseWrapper;
+
+import java.io.IOException;
+
+@Component
+public class ApiLogFilter extends OncePerRequestFilter {
+  @Override
+  protected void doFilterInternal(HttpServletRequest request, HttpServletResponse response, FilterChain filterChain) throws ServletException, IOException {
+    ContentCachingRequestWrapper wrappedRequest =
+      new ContentCachingRequestWrapper(request);
+
+    ContentCachingResponseWrapper wrappedResponse =
+      new ContentCachingResponseWrapper(response);
+
+    filterChain.doFilter(wrappedRequest, wrappedResponse);
+
+    // 반드시 response body copy
+    wrappedResponse.copyBodyToResponse();
+  }
+}

src/main/java/com/kamco/cd/kamcoback/config/api/ApiLogFunction.java

@@ -0,0 +1,111 @@
+package com.kamco.cd.kamcoback.config.api;
+
+import com.kamco.cd.kamcoback.log.dto.EventStatus;
+import com.kamco.cd.kamcoback.log.dto.EventType;
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.web.util.ContentCachingRequestWrapper;
+
+import java.io.UnsupportedEncodingException;
+import java.util.Map;
+import java.util.stream.Collectors;
+
+public class ApiLogFunction {
+  // 클라이언트 IP 추출
+  public static String getClientIp(HttpServletRequest request) {
+    String[] headers = {
+      "X-Forwarded-For",
+      "Proxy-Client-IP",
+      "WL-Proxy-Client-IP",
+      "HTTP_CLIENT_IP",
+      "HTTP_X_FORWARDED_FOR"
+    };
+    for (String header : headers) {
+      String ip = request.getHeader(header);
+      if (ip != null && ip.length() != 0 && !"unknown".equalsIgnoreCase(ip)) {
+        return ip.split(",")[0];
+      }
+    }
+    String ip = request.getRemoteAddr();
+    if ("0:0:0:0:0:0:0:1".equals(ip)) {   //local 일 때
+      ip = "127.0.0.1";
+    }
+    return ip;
+  }
+
+  // 사용자 ID 추출 예시 (Spring Security 기준)
+  public static String getUserId(HttpServletRequest request) {
+    try {
+      return request.getUserPrincipal() != null ? request.getUserPrincipal().getName() : null;
+    } catch (Exception e) {
+      return null;
+    }
+  }
+
+  public static EventType getEventType(HttpServletRequest request) {
+    String method = request.getMethod().toUpperCase();
+    String uri = request.getRequestURI().toLowerCase();
+
+    //URL 기반 DOWNLOAD/PRINT 분류
+    if(uri.contains("/download") || uri.contains("/export"))  return EventType.DOWNLOAD;
+    if(uri.contains("/print"))  return EventType.PRINT;
+
+    // 일반 CRUD
+    return switch (method) {
+      case "POST" -> EventType.CREATE;
+      case "GET" -> EventType.READ;
+      case "DELETE" -> EventType.DELETE;
+      case "PUT", "PATCH" -> EventType.UPDATE;
+      default -> EventType.OTHER;
+    };
+  }
+
+  public static String getRequestBody(HttpServletRequest servletRequest, ContentCachingRequestWrapper contentWrapper) {
+    StringBuilder resultBody = new StringBuilder();
+    // GET, form-urlencoded POST 파라미터
+    Map<String, String[]> paramMap = servletRequest.getParameterMap();
+
+    String queryParams = paramMap.entrySet().stream()
+      .map(e -> e.getKey() + "=" + String.join(",", e.getValue()))
+      .collect(Collectors.joining("&"));
+
+    resultBody.append(queryParams.isEmpty() ? "" : queryParams);
+
+    // JSON Body
+    if ("POST".equalsIgnoreCase(servletRequest.getMethod())
+      && servletRequest.getContentType() != null
+      && servletRequest.getContentType().contains("application/json")) {
+      try {
+        //json인 경우는 Wrapper를 통해 가져오기
+        resultBody.append(getBodyData(contentWrapper));
+
+      } catch (Exception e) {
+        resultBody.append("cannot read JSON body ").append(e.toString());
+      }
+    }
+
+    // Multipart form-data
+    if ("POST".equalsIgnoreCase(servletRequest.getMethod())
+      && servletRequest.getContentType() != null
+      && servletRequest.getContentType().startsWith("multipart/form-data")) {
+      resultBody.append("multipart/form-data request");
+    }
+
+    return resultBody.toString();
+  }
+
+  // JSON Body 읽기
+  public static String getBodyData(ContentCachingRequestWrapper request) {
+    byte[] buf = request.getContentAsByteArray();
+    if (buf.length == 0) return null;
+    try {
+      return new String(buf, request.getCharacterEncoding());
+    } catch (UnsupportedEncodingException e) {
+      return new String(buf);
+    }
+  }
+
+  //ApiResponse 의 Status가 2xx 범위이면 SUCCESS, 아니면 FAILED
+  public static EventStatus isSuccessFail(ApiResponseDto<?> apiResponse){
+    return apiResponse.getHttpStatus().is2xxSuccessful() ? EventStatus.SUCCESS : EventStatus.FAILED;
+  }
+}

src/main/java/com/kamco/cd/kamcoback/config/api/ApiResponseAdvice.java

@@ -1,12 +1,19 @@
 package com.kamco.cd.kamcoback.config.api;
 
+import com.kamco.cd.kamcoback.postgres.entity.AuditLogEntity;
+import com.kamco.cd.kamcoback.postgres.repository.log.AuditLogRepository;
+import jakarta.servlet.http.HttpServletRequest;
 import org.springframework.core.MethodParameter;
 import org.springframework.http.MediaType;
 import org.springframework.http.converter.HttpMessageConverter;
 import org.springframework.http.server.ServerHttpRequest;
 import org.springframework.http.server.ServerHttpResponse;
+import org.springframework.http.server.ServletServerHttpRequest;
 import org.springframework.web.bind.annotation.RestControllerAdvice;
 import org.springframework.web.servlet.mvc.method.annotation.ResponseBodyAdvice;
+import org.springframework.web.util.ContentCachingRequestWrapper;
+
+import java.util.Optional;
 
 /**
  * ApiResponseDto의 내장된 HTTP 상태 코드를 실제 HTTP 응답에 적용하는 Advice
@@ -16,6 +23,12 @@ import org.springframework.web.servlet.mvc.method.annotation.ResponseBodyAdvice;
 @RestControllerAdvice
 public class ApiResponseAdvice implements ResponseBodyAdvice<Object> {
 
+  private final AuditLogRepository auditLogRepository;
+
+  public ApiResponseAdvice(AuditLogRepository auditLogRepository) {
+    this.auditLogRepository = auditLogRepository;
+  }
+
   @Override
   public boolean supports(
       MethodParameter returnType, Class<? extends HttpMessageConverter<?>> converterType) {
@@ -32,9 +45,25 @@ public class ApiResponseAdvice implements ResponseBodyAdvice<Object> {
       ServerHttpRequest request,
       ServerHttpResponse response) {
 
+    HttpServletRequest servletRequest = ((ServletServerHttpRequest) request).getServletRequest();
+    ContentCachingRequestWrapper contentWrapper = (ContentCachingRequestWrapper) servletRequest;
+
     if (body instanceof ApiResponseDto<?> apiResponse) {
       // ApiResponseDto에 설정된 httpStatus를 실제 HTTP 응답에 적용
       response.setStatusCode(apiResponse.getHttpStatus());
+
+      String ip = ApiLogFunction.getClientIp(servletRequest);
+      //TODO : userid 가 계정명인지, uid 인지 확인 후 로직 수정 필요함
+      Long userid = Long.valueOf(Optional.ofNullable(ApiLogFunction.getUserId(servletRequest)).orElse("1"));
+
+      //TODO: menuUid 를 동적으로 가져오게끔 해야함
+      AuditLogEntity log = new AuditLogEntity(userid, ApiLogFunction.getEventType(servletRequest),
+        ApiLogFunction.isSuccessFail(apiResponse), "MU_01_01", ip, servletRequest.getRequestURI(), ApiLogFunction.getRequestBody(servletRequest, contentWrapper),
+        apiResponse.getErrorLogUid()
+      );
+
+      //tb_audit_log 테이블 저장
+      auditLogRepository.save(log);
     }
 
     return body;

src/main/java/com/kamco/cd/kamcoback/config/api/ApiResponseDto.java

@@ -20,7 +20,9 @@ public class ApiResponseDto<T> {
   @JsonInclude(JsonInclude.Include.NON_NULL)
   private T errorData;
 
-  @JsonIgnore private HttpStatus httpStatus = HttpStatus.OK;
+  @JsonIgnore private HttpStatus httpStatus;
+
+  @JsonIgnore private Long errorLogUid;
 
   public ApiResponseDto(T data) {
     this.data = data;
@@ -38,6 +40,15 @@ public class ApiResponseDto<T> {
   public ApiResponseDto(ApiResponseCode code, String message) {
     this.error = new Error(code.getId(), message);
   }
+  public ApiResponseDto(ApiResponseCode code, String message, HttpStatus httpStatus) {
+    this.error = new Error(code.getId(), message);
+    this.httpStatus = httpStatus;
+  }
+  public ApiResponseDto(ApiResponseCode code, String message, HttpStatus httpStatus, Long errorLogUid) {
+    this.error = new Error(code.getId(), message);
+    this.httpStatus = httpStatus;
+    this.errorLogUid = errorLogUid;
+  }
 
   public ApiResponseDto(ApiResponseCode code, String message, T errorData) {
     this.error = new Error(code.getId(), message);
@@ -64,6 +75,12 @@ public class ApiResponseDto<T> {
   public static ApiResponseDto<String> createException(ApiResponseCode code, String message) {
     return new ApiResponseDto<>(code, message);
   }
+  public static ApiResponseDto<String> createException(ApiResponseCode code, String message, HttpStatus httpStatus) {
+    return new ApiResponseDto<>(code, message, httpStatus);
+  }
+  public static ApiResponseDto<String> createException(ApiResponseCode code, String message, HttpStatus httpStatus, Long errorLogUid) {
+    return new ApiResponseDto<>(code, message, httpStatus, errorLogUid);
+  }
 
   public static <T> ApiResponseDto<T> createException(
       ApiResponseCode code, String message, T data) {
@@ -89,6 +106,7 @@ public class ApiResponseDto<T> {
     // @formatter:off
     OK("요청이 성공하였습니다."),
     BAD_REQUEST("요청 파라미터가 잘못되었습니다."),
+    BAD_GATEWAY("네트워크 상태가 불안정합니다."),
     ALREADY_EXIST_MALL("이미 등록된 쇼핑센터입니다."),
     NOT_FOUND_MAP("지도를 찾을 수 없습니다."),
     UNAUTHORIZED("권한이 없습니다."),
@@ -111,8 +129,8 @@ public class ApiResponseDto<T> {
     REQUIRED_EMAIL("이메일은 필수 항목입니다."),
     WRONG_PASSWORD("잘못된 패스워드입니다.."),
     DUPLICATE_EMAIL("이미 가입된 이메일입니다."),
-    DUPLICATE_DATA("이미 등록되여 있습니다."),
-    DATA_INTEGRITY_ERROR("요청을 처리할수 없습니다."),
+    DUPLICATE_DATA("이미 등록되어 있습니다."),
+    DATA_INTEGRITY_ERROR("데이터 무결성이 위반되어 요청을 처리할수 없습니다."),
     FOREIGN_KEY_ERROR("참조 중인 데이터가 있어 삭제할 수 없습니다."),
     DUPLICATE_EMPLOYEEID("이미 가입된 사번입니다."),
     NOT_FOUND_USER_FOR_EMAIL("이메일로 유저를 찾을 수 없습니다."),
@@ -134,5 +152,13 @@ public class ApiResponseDto<T> {
     public String getText() {
       return message;
     }
+
+    public static ApiResponseCode getCode(String name) {
+      return ApiResponseCode.valueOf(name.toUpperCase());
+    }
+
+    public static String getMessage(String name) {
+      return ApiResponseCode.valueOf(name.toUpperCase()).getText();
+    }
   }
 }