feat(resolver) : 2단계 - 로그인 리팩터링

jsoonworld · jsoonworld · commit e68c24d7c4ea · 2025-06-26T17:34:59.000+09:00
diff --git a/src/main/java/roomescape/config/WebConfig.java b/src/main/java/roomescape/config/WebConfig.java
@@ -0,0 +1,27 @@
+package roomescape.config;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+import roomescape.util.LoginMemberArgumentResolver;
+import roomescape.domain.MemberRepository;
+import roomescape.util.JwtUtil;
+
+import java.util.List;
+
+@Configuration
+public class WebConfig implements WebMvcConfigurer {
+
+    private final JwtUtil jwtUtil;
+    private final MemberRepository memberRepository;
+
+    public WebConfig(JwtUtil jwtUtil, MemberRepository memberRepository) {
+        this.jwtUtil = jwtUtil;
+        this.memberRepository = memberRepository;
+    }
+
+    @Override
+    public void addArgumentResolvers(List<HandlerMethodArgumentResolver> resolvers) {
+        resolvers.add(new LoginMemberArgumentResolver(jwtUtil, memberRepository));
+    }
+}
diff --git a/src/main/java/roomescape/controller/LoginController.java b/src/main/java/roomescape/controller/LoginController.java
@@ -3,25 +3,22 @@
 import jakarta.servlet.http.Cookie;
 import jakarta.servlet.http.HttpServletResponse;
 import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.CookieValue;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RestController;
+import roomescape.dto.LoginMember;
 import roomescape.dto.LoginRequest;
 import roomescape.dto.MemberResponse;
 import roomescape.service.LoginService;
-import roomescape.util.JwtUtil;
 
 @RestController
 public class LoginController {
 
     private final LoginService loginService;
-    private final JwtUtil jwtUtil;
 
-    public LoginController(LoginService loginService, JwtUtil jwtUtil) {
+    public LoginController(LoginService loginService) {
         this.loginService = loginService;
-        this.jwtUtil = jwtUtil;
     }
 
     @PostMapping("/login")
@@ -37,13 +34,10 @@ public ResponseEntity<Void> login(@RequestBody LoginRequest loginRequest, HttpSe
     }
 
     @GetMapping("/login/check")
-    public ResponseEntity<MemberResponse> checkLogin(@CookieValue(name = "token", required = false) String token) {
-        if (token == null || token.isEmpty()) {
-            throw new IllegalArgumentException("[ERROR] 토큰이 존재하지 않습니다.");
+    public ResponseEntity<MemberResponse> checkLogin(LoginMember loginMember) {
+        if (loginMember == null) {
+            throw new IllegalArgumentException("[ERROR] 인증되지 않은 사용자입니다.");
         }
-
-        String name = jwtUtil.getNameFromToken(token);
-
-        return ResponseEntity.ok(new MemberResponse(name));
+        return ResponseEntity.ok(new MemberResponse(loginMember.name()));
     }
 }
diff --git a/src/main/java/roomescape/controller/ReservationController.java b/src/main/java/roomescape/controller/ReservationController.java
@@ -7,6 +7,7 @@
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RestController;
+import roomescape.dto.LoginMember;
 import roomescape.dto.ReservationRequest;
 import roomescape.dto.ReservationResponse;
 import roomescape.dto.TimeRequest;
@@ -32,8 +33,11 @@ public ResponseEntity<List<ReservationResponse>> getReservations() {
     }
 
     @PostMapping("/reservations")
-    public ResponseEntity<ReservationResponse> createReservation(@RequestBody ReservationRequest request) {
-        ReservationResponse reservation = reservationService.createReservation(request);
+    public ResponseEntity<ReservationResponse> createReservation(
+            @RequestBody ReservationRequest request,
+            LoginMember loginMember
+    ) {
+        ReservationResponse reservation = reservationService.createReservation(request, loginMember);
         return ResponseEntity
                 .created(URI.create("/reservations/" + reservation.id()))
                 .body(reservation);
diff --git a/src/main/java/roomescape/domain/MemberRepository.java b/src/main/java/roomescape/domain/MemberRepository.java
@@ -4,6 +4,7 @@
 import org.springframework.jdbc.core.JdbcTemplate;
 import org.springframework.jdbc.core.RowMapper;
 import org.springframework.stereotype.Repository;
+
 import java.util.Optional;
 
 @Repository
@@ -25,8 +26,16 @@ public MemberRepository(JdbcTemplate jdbcTemplate) {
     public Optional<Member> findByEmail(String email) {
         String sql = "SELECT id, email, password, name, role FROM member WHERE email = ?";
         try {
-            Member member = jdbcTemplate.queryForObject(sql, memberRowMapper, email);
-            return Optional.ofNullable(member);
+            return Optional.ofNullable(jdbcTemplate.queryForObject(sql, memberRowMapper, email));
+        } catch (EmptyResultDataAccessException e) {
+            return Optional.empty();
+        }
+    }
+
+    public Optional<Member> findById(Long id) {
+        String sql = "SELECT id, email, password, name, role FROM member WHERE id = ?";
+        try {
+            return Optional.ofNullable(jdbcTemplate.queryForObject(sql, memberRowMapper, id));
         } catch (EmptyResultDataAccessException e) {
             return Optional.empty();
         }
diff --git a/src/main/java/roomescape/dto/LoginMember.java b/src/main/java/roomescape/dto/LoginMember.java
@@ -0,0 +1,8 @@
+package roomescape.dto;
+
+public record LoginMember(
+        Long id,
+        String name,
+        String role
+) {
+}
diff --git a/src/main/java/roomescape/service/ReservationService.java b/src/main/java/roomescape/service/ReservationService.java
@@ -2,10 +2,12 @@
 
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
+import org.springframework.util.StringUtils;
 import roomescape.domain.Reservation;
 import roomescape.domain.ReservationRepository;
 import roomescape.domain.Time;
 import roomescape.domain.TimeRepository;
+import roomescape.dto.LoginMember;
 import roomescape.dto.ReservationRequest;
 import roomescape.dto.ReservationResponse;
 import roomescape.dto.TimeRequest;
@@ -31,15 +33,22 @@ public ReservationService(ReservationRepository reservationRepository,
     }
 
     @Transactional
-    public ReservationResponse createReservation(ReservationRequest request) {
-        String validatedName = request.getValidatedName();
+    public ReservationResponse createReservation(ReservationRequest request, LoginMember loginMember) {
+        String reservationName = request.name();
+        if (!StringUtils.hasText(reservationName)) {
+            if (loginMember == null) {
+                throw new ReservationException("[ERROR] 예약자 이름을 입력해주세요 (비로그인 상태).");
+            }
+            reservationName = loginMember.name();
+        }
+
         LocalDate parsedDate = request.getParsedDate();
         Long timeId = request.timeId();
 
         Time time = timeRepository.findById(timeId)
                 .orElseThrow(() -> new ReservationException("[ERROR] 등록되지 않은 시간입니다."));
 
-        Reservation newReservation = Reservation.create(validatedName, parsedDate, time);
+        Reservation newReservation = Reservation.create(reservationName, parsedDate, time);
 
         if (reservationRepository.existsByDateAndTimeId(newReservation.getDate(), newReservation.getTime().getId())) {
             throw new ReservationException("[ERROR] 이미 예약된 시간입니다.");
diff --git a/src/main/java/roomescape/util/JwtUtil.java b/src/main/java/roomescape/util/JwtUtil.java
@@ -5,6 +5,7 @@
 import io.jsonwebtoken.security.Keys;
 import org.springframework.stereotype.Component;
 import roomescape.domain.Member;
+
 import javax.crypto.SecretKey;
 import java.nio.charset.StandardCharsets;
 
@@ -26,8 +27,8 @@ public String createToken(Member member) {
                 .compact();
     }
 
-    public String getNameFromToken(String token) {
-        return parseClaims(token).get("name", String.class);
+    public Long getMemberIdFromToken(String token) {
+        return Long.valueOf(parseClaims(token).getSubject());
     }
 
     private Claims parseClaims(String token) {
diff --git a/src/main/java/roomescape/util/LoginMemberArgumentResolver.java b/src/main/java/roomescape/util/LoginMemberArgumentResolver.java
@@ -0,0 +1,63 @@
+package roomescape.util;
+
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.core.MethodParameter;
+import org.springframework.web.bind.support.WebDataBinderFactory;
+import org.springframework.web.context.request.NativeWebRequest;
+import org.springframework.web.method.support.HandlerMethodArgumentResolver;
+import org.springframework.web.method.support.ModelAndViewContainer;
+import roomescape.domain.Member;
+import roomescape.domain.MemberRepository;
+import roomescape.dto.LoginMember;
+
+import java.util.Arrays;
+import java.util.Optional;
+
+public class LoginMemberArgumentResolver implements HandlerMethodArgumentResolver {
+
+    private final JwtUtil jwtUtil;
+    private final MemberRepository memberRepository;
+
+    public LoginMemberArgumentResolver(JwtUtil jwtUtil, MemberRepository memberRepository) {
+        this.jwtUtil = jwtUtil;
+        this.memberRepository = memberRepository;
+    }
+
+    @Override
+    public boolean supportsParameter(MethodParameter parameter) {
+        return parameter.getParameterType().equals(LoginMember.class);
+    }
+
+    @Override
+    public Object resolveArgument(MethodParameter parameter, ModelAndViewContainer mavContainer,
+                                  NativeWebRequest webRequest, WebDataBinderFactory binderFactory) {
+        HttpServletRequest request = webRequest.getNativeRequest(HttpServletRequest.class);
+        if (request == null) {
+            return null;
+        }
+
+        Optional<String> token = extractToken(request.getCookies());
+        if (token.isEmpty()) {
+            return null;
+        }
+
+        Long memberId = jwtUtil.getMemberIdFromToken(token.get());
+        Member member = memberRepository.findById(memberId).orElse(null);
+
+        if (member == null) {
+            return null;
+        }
+        return new LoginMember(member.getId(), member.getName(), member.getRole());
+    }
+
+    private Optional<String> extractToken(Cookie[] cookies) {
+        if (cookies == null) {
+            return Optional.empty();
+        }
+        return Arrays.stream(cookies)
+                .filter(cookie -> "token".equals(cookie.getName()))
+                .map(Cookie::getValue)
+                .findFirst();
+    }
+}
diff --git a/src/test/java/roomescape/MissionStepTest.java b/src/test/java/roomescape/MissionStepTest.java
@@ -29,37 +29,85 @@ public class MissionStepTest {
     private ReservationController reservationController;
 
     @Test
-    @DisplayName("로그인에 성공하고, 발급된 토큰으로 사용자 정보를 정상적으로 조회한다")
-    void loginAndCheckUserStatus() {
-        // given: 로그인에 필요한 정보를 준비
-        Map<String, String> params = new HashMap<>();
-        params.put("email", "admin@email.com");
-        params.put("password", "password");
+    @DisplayName("로그인한 사용자가 이름 없이 예약을 생성하면 자신의 이름으로 예약된다")
+    void createReservationWithLoggedInUserName() {
+        // given: 예약을 위한 시간 생성 및 로그인 토큰 발급
+        Map<String, String> timeParams = new HashMap<>();
+        timeParams.put("time", "11:00");
+        RestAssured.given().log().all()
+                .contentType(ContentType.JSON)
+                .body(timeParams)
+                .when().post("/times")
+                .then().log().all()
+                .statusCode(201);
+
+        String token = createToken("admin@email.com", "password");
+
+        // when: 로그인 상태에서 'name' 없이 예약을 요청
+        Map<String, Object> paramsWithoutName = new HashMap<>();
+        paramsWithoutName.put("date", "2025-08-05");
+        paramsWithoutName.put("timeId", 1L);
 
-        // when: 로그인을 요청
         ExtractableResponse<Response> response = RestAssured.given().log().all()
+                .body(paramsWithoutName)
+                .cookie("token", token)
                 .contentType(ContentType.JSON)
-                .body(params)
-                .when().post("/login")
+                .when().post("/reservations")
+                .then().log().all()
+                .extract();
+
+        // then: 로그인한 사용자('어드민')의 이름으로 예약이 생성됨
+        assertThat(response.statusCode()).isEqualTo(201);
+        assertThat(response.jsonPath().getString("name")).isEqualTo("어드민");
+    }
+
+    @Test
+    @DisplayName("로그인한 사용자가 이름을 직접 입력하면 해당 이름으로 예약된다")
+    void createReservationWithSpecifiedNameWhileLoggedIn() {
+        // given: 예약을 위한 시간 생성 및 로그인 토큰 발급
+        Map<String, String> timeParams = new HashMap<>();
+        timeParams.put("time", "11:00");
+        RestAssured.given().log().all()
+                .contentType(ContentType.JSON)
+                .body(timeParams)
+                .when().post("/times")
+                .then().log().all()
+                .statusCode(201);
+
+        String token = createToken("admin@email.com", "password");
+
+        // when: 로그인 상태에서 'name'을 직접 입력하여 예약을 요청
+        Map<String, Object> paramsWithName = new HashMap<>();
+        paramsWithName.put("name", "브라운");
+        paramsWithName.put("date", "2025-08-06");
+        paramsWithName.put("timeId", 1L);
+
+        ExtractableResponse<Response> response = RestAssured.given().log().all()
+                .body(paramsWithName)
+                .cookie("token", token)
+                .contentType(ContentType.JSON)
+                .when().post("/reservations")
                 .then().log().all()
-                .statusCode(200)
                 .extract();
 
-        // then: 응답 쿠키에서 토큰을 성공적으로 추출
-        String token = response.headers().get("Set-Cookie").getValue().split(";")[0].split("=")[1];
+        // then: 직접 입력한 이름('브라운')으로 예약이 생성됨
+        assertThat(response.statusCode()).isEqualTo(201);
+        assertThat(response.jsonPath().getString("name")).isEqualTo("브라운");
+    }
+
+    @Test
+    @DisplayName("로그인에 성공하고, 발급된 토큰으로 사용자 정보를 정상적으로 조회한다")
+    void loginAndCheckUserStatus() {
+        String token = createToken("admin@email.com", "password");
         assertThat(token).isNotBlank();
 
-        // when: 추출한 토큰으로 사용자 정보 조회를 요청
-        ExtractableResponse<Response> checkResponse = RestAssured.given().log().all()
+        RestAssured.given().log().all()
                 .contentType(ContentType.JSON)
                 .cookie("token", token)
                 .when().get("/login/check")
                 .then().log().all()
                 .statusCode(200)
-                .extract();
-
-        // then: 조회된 사용자 이름이 예상과 일치
-        assertThat(checkResponse.body().jsonPath().getString("name")).isEqualTo("어드민");
+                .body("name", is("어드민"));
     }
 
     @Test
@@ -210,4 +258,19 @@ void controllerShouldNotDependOnJdbcTemplate() {
         }
         assertThat(isJdbcTemplateInjected).isFalse();
     }
+
+    private String createToken(String email, String password) {
+        Map<String, String> loginParams = new HashMap<>();
+        loginParams.put("email", email);
+        loginParams.put("password", password);
+
+        return RestAssured.given().log().all()
+                .contentType(ContentType.JSON)
+                .body(loginParams)
+                .when().post("/login")
+                .then().log().all()
+                .statusCode(200)
+                .extract()
+                .cookie("token");
+    }
 }
