권한 테스트 api 수정

2025-12-12 10:02:23 +09:00
parent 970d08ba44
commit f642f7c723
4 changed files with 267 additions and 274 deletions
--- a/src/main/java/com/kamco/cd/kamcoback/config/GlobalExceptionHandler.java
+++ b/src/main/java/com/kamco/cd/kamcoback/config/GlobalExceptionHandler.java
@@ -45,197 +45,197 @@ public class GlobalExceptionHandler {
  @ResponseStatus(HttpStatus.UNPROCESSABLE_ENTITY)
  @ExceptionHandler(EntityNotFoundException.class)
  public ApiResponseDto<String> handlerEntityNotFoundException(
-    EntityNotFoundException e, HttpServletRequest request) {
+      EntityNotFoundException e, HttpServletRequest request) {
    log.warn("[EntityNotFoundException] resource :{} ", e.getMessage());
    String codeName = "NOT_FOUND_DATA";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_REQUEST)
  @ExceptionHandler(HttpMessageNotReadableException.class)
  public ApiResponseDto<String> handleUnreadable(
-    HttpMessageNotReadableException e, HttpServletRequest request) {
+      HttpMessageNotReadableException e, HttpServletRequest request) {
    log.warn("[HttpMessageNotReadableException] resource :{} ", e.getMessage());
    String codeName = "BAD_REQUEST";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.NOT_FOUND)
  @ExceptionHandler(NoSuchElementException.class)
  public ApiResponseDto<String> handlerNoSuchElementException(
-    NoSuchElementException e, HttpServletRequest request) {
+      NoSuchElementException e, HttpServletRequest request) {
    log.warn("[NoSuchElementException] resource :{} ", e.getMessage());
    String codeName = "NOT_FOUND_DATA";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("NOT_FOUND"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("NOT_FOUND"),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_REQUEST)
  @ExceptionHandler(IllegalArgumentException.class)
  public ApiResponseDto<String> handlerIllegalArgumentException(
-    IllegalArgumentException e, HttpServletRequest request) {
+      IllegalArgumentException e, HttpServletRequest request) {
    log.warn("[handlerIllegalArgumentException] resource :{} ", e.getMessage());
    String codeName = "BAD_REQUEST";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.UNPROCESSABLE_ENTITY)
  @ExceptionHandler(DataIntegrityViolationException.class)
  public ApiResponseDto<String> handlerDataIntegrityViolationException(
-    DataIntegrityViolationException e, HttpServletRequest request) {
+      DataIntegrityViolationException e, HttpServletRequest request) {
    log.warn("[DataIntegrityViolationException] resource :{} ", e.getMessage());
    String codeName = "DATA_INTEGRITY_ERROR";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
-        ErrorLogDto.LogErrorLevel.CRITICAL,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
+            ErrorLogDto.LogErrorLevel.CRITICAL,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("UNPROCESSABLE_ENTITY"),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_REQUEST)
  @ExceptionHandler(MethodArgumentNotValidException.class)
  public ApiResponseDto<String> handlerMethodArgumentNotValidException(
-    MethodArgumentNotValidException e, HttpServletRequest request) {
+      MethodArgumentNotValidException e, HttpServletRequest request) {
    log.warn("[MethodArgumentNotValidException] resource :{} ", e.getMessage());
    String codeName = "BAD_REQUEST";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.FORBIDDEN)
  @ExceptionHandler(AccessDeniedException.class)
  public ApiResponseDto<String> handlerAccessDeniedException(
-    AccessDeniedException e, HttpServletRequest request) {
+      AccessDeniedException e, HttpServletRequest request) {
    log.warn("[AccessDeniedException] resource :{} ", e.getMessage());
    String codeName = "FORBIDDEN";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.ERROR,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.ERROR,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_GATEWAY)
  @ExceptionHandler(HttpServerErrorException.BadGateway.class)
  public ApiResponseDto<String> handlerHttpServerErrorException(
-    HttpServerErrorException e, HttpServletRequest request) {
+      HttpServerErrorException e, HttpServletRequest request) {
    log.warn("[HttpServerErrorException] resource :{} ", e.getMessage());
    String codeName = "BAD_GATEWAY";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.CRITICAL,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.CRITICAL,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.UNPROCESSABLE_ENTITY)
  @ExceptionHandler(IllegalStateException.class)
  public ApiResponseDto<String> handlerIllegalStateException(
-    IllegalStateException e, HttpServletRequest request) {
+      IllegalStateException e, HttpServletRequest request) {
    log.warn("[IllegalStateException] resource :{} ", e.getMessage());

    String codeName = "UNPROCESSABLE_ENTITY";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_REQUEST)
  @ExceptionHandler(MemberException.DuplicateMemberException.class)
  public ApiResponseDto<String> handlerDuplicateMemberException(
-    MemberException.DuplicateMemberException e, HttpServletRequest request) {
+      MemberException.DuplicateMemberException e, HttpServletRequest request) {
    log.warn("[DuplicateMemberException] resource :{} ", e.getMessage());

    String codeName = "";
@@ -250,112 +250,112 @@ public class GlobalExceptionHandler {
    }

    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf("BAD_REQUEST"),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf("BAD_REQUEST"),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("BAD_REQUEST"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("BAD_REQUEST"),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.BAD_REQUEST)
  @ExceptionHandler(MemberException.MemberNotFoundException.class)
  public ApiResponseDto<String> handlerMemberNotFoundException(
-    MemberException.MemberNotFoundException e, HttpServletRequest request) {
+      MemberException.MemberNotFoundException e, HttpServletRequest request) {
    log.warn("[MemberNotFoundException] resource :{} ", e.getMessage());

    String codeName = "NOT_FOUND_USER";

    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf("BAD_REQUEST"),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf("BAD_REQUEST"),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("BAD_REQUEST"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("BAD_REQUEST"),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.CONFLICT)
  @ExceptionHandler(DuplicateKeyException.class)
  public ApiResponseDto<String> handlerDuplicateKeyException(
-    DuplicateKeyException e, HttpServletRequest request) {
+      DuplicateKeyException e, HttpServletRequest request) {
    log.warn("[DuplicateKeyException] resource :{} ", e.getMessage());

    String codeName = "DUPLICATE_DATA";

    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf("CONFLICT"),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf("CONFLICT"),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf("CONFLICT"),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf("CONFLICT"),
+        errorLog.getId());
  }

  @ExceptionHandler(BadCredentialsException.class)
  public ResponseEntity<ApiResponseDto<String>> handleBadCredentials(
-    BadCredentialsException e, HttpServletRequest request) {
+      BadCredentialsException e, HttpServletRequest request) {
    log.warn("[BadCredentialsException] resource : {} ", e.getMessage());

    String codeName = "UNAUTHORIZED";

    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.WARNING,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.WARNING,
+            e.getStackTrace());

    ApiResponseDto<String> body =
-      ApiResponseDto.createException(
-        ApiResponseCode.getCode(codeName),
-        ApiResponseCode.getMessage(codeName),
-        HttpStatus.valueOf(codeName),
-        errorLog.getId());
+        ApiResponseDto.createException(
+            ApiResponseCode.getCode(codeName),
+            ApiResponseCode.getMessage(codeName),
+            HttpStatus.valueOf(codeName),
+            errorLog.getId());

    return ResponseEntity.status(HttpStatus.UNAUTHORIZED) // 🔥 여기서 401 지정
-      .body(body);
+        .body(body);
  }

  @ResponseStatus(HttpStatus.INTERNAL_SERVER_ERROR)
  @ExceptionHandler(RuntimeException.class)
  public ApiResponseDto<String> handlerRuntimeException(
-    RuntimeException e, HttpServletRequest request) {
+      RuntimeException e, HttpServletRequest request) {
    log.warn("[RuntimeException] resource :{} ", e.getMessage());

    String codeName = "INTERNAL_SERVER_ERROR";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.CRITICAL,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.CRITICAL,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  @ResponseStatus(HttpStatus.INTERNAL_SERVER_ERROR)
@@ -365,36 +365,36 @@ public class GlobalExceptionHandler {

    String codeName = "INTERNAL_SERVER_ERROR";
    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request,
-        ApiResponseCode.getCode(codeName),
-        HttpStatus.valueOf(codeName),
-        ErrorLogDto.LogErrorLevel.CRITICAL,
-        e.getStackTrace());
+        saveErrorLogData(
+            request,
+            ApiResponseCode.getCode(codeName),
+            HttpStatus.valueOf(codeName),
+            ErrorLogDto.LogErrorLevel.CRITICAL,
+            e.getStackTrace());

    return ApiResponseDto.createException(
-      ApiResponseCode.getCode(codeName),
-      ApiResponseCode.getMessage(codeName),
-      HttpStatus.valueOf(codeName),
-      errorLog.getId());
+        ApiResponseCode.getCode(codeName),
+        ApiResponseCode.getMessage(codeName),
+        HttpStatus.valueOf(codeName),
+        errorLog.getId());
  }

  /**
   * 에러 로그 테이블 저장 로직
   *
-   * @param request       : request
-   * @param errorCode     : 정의된 enum errorCode
-   * @param httpStatus    : HttpStatus 값
+   * @param request : request
+   * @param errorCode : 정의된 enum errorCode
+   * @param httpStatus : HttpStatus 값
   * @param logErrorLevel : WARNING, ERROR, CRITICAL
-   * @param stackTrace    : 에러 내용
+   * @param stackTrace : 에러 내용
   * @return : insert하고 결과로 받은 Entity
   */
  private ErrorLogEntity saveErrorLogData(
-    HttpServletRequest request,
-    ApiResponseCode errorCode,
-    HttpStatus httpStatus,
-    ErrorLogDto.LogErrorLevel logErrorLevel,
-    StackTraceElement[] stackTrace) {
+      HttpServletRequest request,
+      ApiResponseCode errorCode,
+      HttpStatus httpStatus,
+      ErrorLogDto.LogErrorLevel logErrorLevel,
+      StackTraceElement[] stackTrace) {

    Long userid = null;

@@ -408,35 +408,35 @@ public class GlobalExceptionHandler {
     * 만든 CustomUserDetails 타입인가? 체크
     */
    if (request.getUserPrincipal() instanceof UsernamePasswordAuthenticationToken auth
-      && auth.getPrincipal() instanceof CustomUserDetails customUserDetails) {
+        && auth.getPrincipal() instanceof CustomUserDetails customUserDetails) {

      // audit 에는 long 타입 user_id가 들어가지만 토큰 sub은 uuid여서 user_id 가져오기
      userid = customUserDetails.getMember().getId();
    }

    String stackTraceStr =
-      Arrays.stream(stackTrace)
-        .map(StackTraceElement::toString)
-        .collect(Collectors.joining("\n"))
-        .substring(0, Math.min(stackTrace.length, 255));
+        Arrays.stream(stackTrace)
+            .map(StackTraceElement::toString)
+            .collect(Collectors.joining("\n"))
+            .substring(0, Math.min(stackTrace.length, 255));

    ErrorLogEntity errorLogEntity =
-      new ErrorLogEntity(
-        request.getRequestURI(),
-        ApiLogFunction.getEventType(request),
-        logErrorLevel,
-        String.valueOf(httpStatus.value()),
-        errorCode.getText(),
-        stackTraceStr,
-        userid,
-        ZonedDateTime.now());
+        new ErrorLogEntity(
+            request.getRequestURI(),
+            ApiLogFunction.getEventType(request),
+            logErrorLevel,
+            String.valueOf(httpStatus.value()),
+            errorCode.getText(),
+            stackTraceStr,
+            userid,
+            ZonedDateTime.now());

    return errorLogRepository.save(errorLogEntity);
  }

  @ExceptionHandler(CustomApiException.class)
  public ResponseEntity<ApiResponseDto<String>> handleCustomApiException(
-    CustomApiException e, HttpServletRequest request) {
+      CustomApiException e, HttpServletRequest request) {
    log.warn("[CustomApiException] resource : {}", e.getMessage());

    String codeName = e.getCodeName();
@@ -446,11 +446,11 @@ public class GlobalExceptionHandler {
    ApiResponseCode apiCode = ApiResponseCode.getCode(codeName);

    ErrorLogEntity errorLog =
-      saveErrorLogData(
-        request, apiCode, status, ErrorLogDto.LogErrorLevel.WARNING, e.getStackTrace());
+        saveErrorLogData(
+            request, apiCode, status, ErrorLogDto.LogErrorLevel.WARNING, e.getStackTrace());

    ApiResponseDto<String> body =
-      ApiResponseDto.createException(apiCode, message, status, errorLog.getId());
+        ApiResponseDto.createException(apiCode, message, status, errorLog.getId());

    return new ResponseEntity<>(body, status);
  }
--- a/src/main/java/com/kamco/cd/kamcoback/config/SecurityConfig.java
+++ b/src/main/java/com/kamco/cd/kamcoback/config/SecurityConfig.java
@@ -30,46 +30,45 @@ public class SecurityConfig {
  public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {

    http.cors(cors -> cors.configurationSource(corsConfigurationSource()))
-      .csrf(csrf -> csrf.disable()) // CSRF 보안 기능 비활성화
-      .sessionManagement(
-        sm ->
-          sm.sessionCreationPolicy(
-            SessionCreationPolicy.STATELESS)) // 서버 세션 만들지 않음, 요청은 JWT 인증
-      .formLogin(form -> form.disable()) // react에서 로그인 요청 관리
-      .httpBasic(basic -> basic.disable()) // 기본 basic 인증 비활성화 JWT 인증사용
-      .logout(logout -> logout.disable()) // 기본 로그아웃 비활성화 JWT는 서버 상태가 없으므로 로그아웃 처리 필요 없음
-      .authenticationProvider(
-        customAuthenticationProvider) // 로그인 패스워드 비교방식 스프링 기본 Provider 사용안함 커스텀 사용
-      .authorizeHttpRequests(
-        auth ->
-          auth
-            // ADMIN만 접근
-            .requestMatchers("/api/test/admin")
-            .hasRole("ADMIN")
+        .csrf(csrf -> csrf.disable()) // CSRF 보안 기능 비활성화
+        .sessionManagement(
+            sm ->
+                sm.sessionCreationPolicy(
+                    SessionCreationPolicy.STATELESS)) // 서버 세션 만들지 않음, 요청은 JWT 인증
+        .formLogin(form -> form.disable()) // react에서 로그인 요청 관리
+        .httpBasic(basic -> basic.disable()) // 기본 basic 인증 비활성화 JWT 인증사용
+        .logout(logout -> logout.disable()) // 기본 로그아웃 비활성화 JWT는 서버 상태가 없으므로 로그아웃 처리 필요 없음
+        .authenticationProvider(
+            customAuthenticationProvider) // 로그인 패스워드 비교방식 스프링 기본 Provider 사용안함 커스텀 사용
+        .authorizeHttpRequests(
+            auth ->
+                auth
+                    // ADMIN만 접근
+                    .requestMatchers("/api/test/admin")
+                    .hasRole("ADMIN")

-            // ADMIN, LABELER 접근
-            .requestMatchers("/api/test/label")
-            .hasAnyRole("ADMIN", "LABELER")
+                    // ADMIN, LABELER 접근
+                    .requestMatchers("/api/test/label")
+                    .hasAnyRole("ADMIN", "LABELER")

-            // ADMIN, REVIEWER 접근
-            .requestMatchers("/api/test/review")
-            .hasAnyRole("ADMIN", "REVIEWER")
-
-            .requestMatchers(HttpMethod.OPTIONS, "/**")
-            .permitAll() // preflight 허용
-            .requestMatchers(
-              "/api/auth/signin",
-              "/api/auth/refresh",
-              "/swagger-ui/**",
-              "/api/members/*/password",
-              "/v3/api-docs/**")
-            .permitAll()
-            .anyRequest()
-            .authenticated())
-      .addFilterBefore(
-        jwtAuthenticationFilter,
-        UsernamePasswordAuthenticationFilter
-          .class) // 요청 들어오면 먼저 JWT 토큰 검사 후 security context 에 사용자 정보 저장.
+                    // ADMIN, REVIEWER 접근
+                    .requestMatchers("/api/test/review")
+                    .hasAnyRole("ADMIN", "REVIEWER")
+                    .requestMatchers(HttpMethod.OPTIONS, "/**")
+                    .permitAll() // preflight 허용
+                    .requestMatchers(
+                        "/api/auth/signin",
+                        "/api/auth/refresh",
+                        "/swagger-ui/**",
+                        "/api/members/*/password",
+                        "/v3/api-docs/**")
+                    .permitAll()
+                    .anyRequest()
+                    .authenticated())
+        .addFilterBefore(
+            jwtAuthenticationFilter,
+            UsernamePasswordAuthenticationFilter
+                .class) // 요청 들어오면 먼저 JWT 토큰 검사 후 security context 에 사용자 정보 저장.
    ;

    return http.build();
@@ -77,7 +76,7 @@ public class SecurityConfig {

  @Bean
  public AuthenticationManager authenticationManager(AuthenticationConfiguration configuration)
-    throws Exception {
+      throws Exception {
    return configuration.getAuthenticationManager();
  }

--- a/src/main/java/com/kamco/cd/kamcoback/members/dto/MembersDto.java
+++ b/src/main/java/com/kamco/cd/kamcoback/members/dto/MembersDto.java
@@ -32,28 +32,24 @@ public class MembersDto {
    private String tempPassword;
    private String status;
    private String statusName;
-    @JsonFormatDttm
-    private ZonedDateTime createdDttm;
-    @JsonFormatDttm
-    private ZonedDateTime updatedDttm;
-    @JsonFormatDttm
-    private ZonedDateTime firstLoginDttm;
-    @JsonFormatDttm
-    private ZonedDateTime lastLoginDttm;
+    @JsonFormatDttm private ZonedDateTime createdDttm;
+    @JsonFormatDttm private ZonedDateTime updatedDttm;
+    @JsonFormatDttm private ZonedDateTime firstLoginDttm;
+    @JsonFormatDttm private ZonedDateTime lastLoginDttm;

    public Basic(
-      Long id,
-      UUID uuid,
-      String userRole,
-      String name,
-      String userId,
-      String employeeNo,
-      String tempPassword,
-      String status,
-      ZonedDateTime createdDttm,
-      ZonedDateTime updatedDttm,
-      ZonedDateTime firstLoginDttm,
-      ZonedDateTime lastLoginDttm) {
+        Long id,
+        UUID uuid,
+        String userRole,
+        String name,
+        String userId,
+        String employeeNo,
+        String tempPassword,
+        String status,
+        ZonedDateTime createdDttm,
+        ZonedDateTime updatedDttm,
+        ZonedDateTime firstLoginDttm,
+        ZonedDateTime lastLoginDttm) {
      this.id = id;
      this.uuid = uuid;
      this.userRole = userRole;
@@ -87,9 +83,7 @@ public class MembersDto {
  @AllArgsConstructor
  public static class SearchReq {

-    @Schema(
-      description = "전체, 관리자(ADMIN), 라벨러(LABELER), 검수자(REVIEWER)",
-      example = "")
+    @Schema(description = "전체, 관리자(ADMIN), 라벨러(LABELER), 검수자(REVIEWER)", example = "")
    private String userRole;

    @Schema(description = "키워드", example = "홍길동")
@@ -133,7 +127,7 @@ public class MembersDto {
    private String employeeNo;

    public AddReq(
-      String userRole, String name, String userId, String tempPassword, String employeeNo) {
+        String userRole, String name, String userId, String tempPassword, String employeeNo) {
      this.userRole = userRole;
      this.name = name;
      this.userId = userId;
--- a/src/main/java/com/kamco/cd/kamcoback/test/TestApiController.java
+++ b/src/main/java/com/kamco/cd/kamcoback/test/TestApiController.java
@@ -22,13 +22,13 @@ public class TestApiController {
  @Operation(summary = "admin test", description = "admin test api")
  @ApiResponses({
    @ApiResponse(
-      responseCode = "200",
-      description = "조회",
-      content = @Content(schema = @Schema(implementation = String.class))),
+        responseCode = "200",
+        description = "조회",
+        content = @Content(schema = @Schema(implementation = String.class))),
    @ApiResponse(
-      responseCode = "403",
-      description = "권한 없음",
-      content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
+        responseCode = "403",
+        description = "권한 없음",
+        content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
  })
  @GetMapping("/admin")
  public ApiResponseDto<String> admin() {
@@ -38,13 +38,13 @@ public class TestApiController {
  @Operation(summary = "label test", description = "label test api")
  @ApiResponses({
    @ApiResponse(
-      responseCode = "200",
-      description = "조회",
-      content = @Content(schema = @Schema(implementation = String.class))),
+        responseCode = "200",
+        description = "조회",
+        content = @Content(schema = @Schema(implementation = String.class))),
    @ApiResponse(
-      responseCode = "403",
-      description = "권한 없음",
-      content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
+        responseCode = "403",
+        description = "권한 없음",
+        content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
  })
  @GetMapping("/label")
  public ApiResponseDto<String> label() {
@@ -54,13 +54,13 @@ public class TestApiController {
  @Operation(summary = "review test", description = "review test api")
  @ApiResponses({
    @ApiResponse(
-      responseCode = "200",
-      description = "조회",
-      content = @Content(schema = @Schema(implementation = String.class))),
+        responseCode = "200",
+        description = "조회",
+        content = @Content(schema = @Schema(implementation = String.class))),
    @ApiResponse(
-      responseCode = "403",
-      description = "권한 없음",
-      content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
+        responseCode = "403",
+        description = "권한 없음",
+        content = @Content(schema = @Schema(implementation = ErrorResponse.class)))
  })
  @GetMapping("/review")
  public ApiResponseDto<String> review() {