Merge branch 'develop'

Author: AlphaBs

src/main/java/com/umc/goodgame/domain/admin/controller/AdminTestController.java

@@ -1,15 +1,8 @@
 package com.umc.goodgame.domain.admin.controller;
 
-import com.umc.goodgame.domain.auth.dto.AuthResponseDto;
 import com.umc.goodgame.domain.recommendation.service.DefaultRecommendationService;
-import com.umc.goodgame.domain.user.entity.Role;
-import com.umc.goodgame.domain.user.entity.User;
-import com.umc.goodgame.domain.user.repository.UserRepository;
-import com.umc.goodgame.global.exception.CustomException;
 import com.umc.goodgame.global.response.ApiResponse;
-import com.umc.goodgame.global.response.ErrorCode;
 import com.umc.goodgame.global.response.SuccessCode;
-import com.umc.goodgame.global.security.jwt.JwtTokenProvider;
 import io.swagger.v3.oas.annotations.Operation;
 import io.swagger.v3.oas.annotations.tags.Tag;
 import lombok.RequiredArgsConstructor;
@@ -28,8 +21,6 @@
 @Tag(name = "Admin Test", description = "관리자 테스트용 API")
 public class AdminTestController {
 
-    private final UserRepository userRepository;
-    private final JwtTokenProvider jwtTokenProvider;
     private final DefaultRecommendationService defaultRecommendationService;
 
     @GetMapping("/verify")
@@ -39,89 +30,6 @@ public ApiResponse<String> adminTest() {
         return ApiResponse.success(SuccessCode.OK, "admin access verified");
     }
 
-    @PostMapping("/create")
-    @Operation(
-            summary = "관리자 계정 생성 (테스트용)",
-            description = "테스트용 관리자 계정을 생성합니다. 이미 관리자 계정이 존재하면 오류를 반환합니다."
-    )
-    @Transactional
-    public ApiResponse<AuthResponseDto.UserInfo> createAdminAccount() {
-        log.info("[AdminTestController.createAdminAccount] Creating admin account");
-
-        // 이미 ADMIN 역할을 가진 사용자가 있는지 확인
-        boolean adminExists = userRepository.findAll().stream()
-                .anyMatch(user -> user.getRole() == Role.ADMIN);
-
-        if (adminExists) {
-            log.warn("[AdminTestController.createAdminAccount] Admin account already exists");
-            throw new CustomException(ErrorCode.ADMIN_ALREADY_EXISTS);
-        }
-
-        // 관리자 계정 생성
-        User admin = User.builder()
-                .googleId("admin-test-user")
-                .email("admin@test.local")
-                .name("관리자")
-                .profileImage(null)
-                .role(Role.ADMIN)
-                .build();
-
-        User savedAdmin = userRepository.save(admin);
-        log.info("[AdminTestController.createAdminAccount] Admin account created with id: {}", savedAdmin.getId());
-
-        return ApiResponse.success(
-                SuccessCode.CREATED,
-                AuthResponseDto.UserInfo.builder()
-                        .id(savedAdmin.getId())
-                        .email(savedAdmin.getEmail())
-                        .name(savedAdmin.getName())
-                        .profileImage(savedAdmin.getProfileImage())
-                        .role(savedAdmin.getRole())
-                        .build()
-        );
-    }
-
-    @PostMapping("/token")
-    @Operation(
-            summary = "관리자 JWT 토큰 발급 (테스트용)",
-            description = "관리자 계정의 JWT 토큰을 발급합니다. 관리자 계정이 없으면 오류를 반환합니다."
-    )
-    @Transactional(readOnly = true)
-    public ApiResponse<AuthResponseDto.LoginResponse> issueAdminToken() {
-        log.info("[AdminTestController.issueAdminToken] Issuing admin token");
-
-        // ADMIN 역할을 가진 사용자 찾기
-        User admin = userRepository.findAll().stream()
-                .filter(user -> user.getRole() == Role.ADMIN)
-                .findFirst()
-                .orElseThrow(() -> {
-                    log.warn("[AdminTestController.issueAdminToken] Admin account not found");
-                    return new CustomException(ErrorCode.MEMBER_NOT_FOUND);
-                });
-
-        String accessToken = jwtTokenProvider.createAccessToken(admin.getId(), admin.getRole());
-        String refreshToken = jwtTokenProvider.createRefreshToken(admin.getId(), admin.getRole());
-
-        log.info("[AdminTestController.issueAdminToken] Admin token issued for userId: {}", admin.getId());
-
-        return ApiResponse.success(
-                SuccessCode.OK,
-                AuthResponseDto.LoginResponse.builder()
-                        .accessToken(accessToken)
-                        .refreshToken(refreshToken)
-                        .accessTokenExpiresIn(jwtTokenProvider.getAccessTokenExpiry())
-                        .isNewUser(false)
-                        .user(AuthResponseDto.UserInfo.builder()
-                                .id(admin.getId())
-                                .email(admin.getEmail())
-                                .name(admin.getName())
-                                .profileImage(admin.getProfileImage())
-                                .role(admin.getRole())
-                                .build())
-                        .build()
-        );
-    }
-
     @Operation(summary = "기본 추천 전체 삭제", description = "DefaultRecommendation 테이블을 비웁니다.")
     @DeleteMapping("/default-recommendations")
     @Transactional

src/main/java/com/umc/goodgame/domain/auth/controller/DevAuthController.java

@@ -4,7 +4,10 @@
 import com.umc.goodgame.domain.user.entity.Role;
 import com.umc.goodgame.domain.user.entity.User;
 import com.umc.goodgame.domain.user.repository.UserRepository;
+import com.umc.goodgame.global.exception.CustomException;
 import com.umc.goodgame.global.response.ApiResponse;
+import com.umc.goodgame.global.response.ErrorCode;
+import com.umc.goodgame.global.response.SuccessCode;
 import com.umc.goodgame.global.security.jwt.JwtTokenProvider;
 import io.swagger.v3.oas.annotations.Operation;
 import io.swagger.v3.oas.annotations.tags.Tag;
@@ -98,4 +101,89 @@ private User createDefaultTestUser(Role role) {
                 .build();
         return userRepository.save(testUser);
     }
+
+    @PostMapping("/create-admin")
+    @Operation(
+            summary = "관리자 계정 생성 (테스트용)",
+            description = "테스트용 관리자 계정을 생성합니다. 이미 관리자 계정이 존재하면 오류를 반환합니다. " +
+                    "**⚠️ 개발/테스트 환경에서만 사용 가능합니다.**"
+    )
+    @Transactional
+    public ApiResponse<AuthResponseDto.UserInfo> createAdminAccount() {
+        log.info("[DevAuthController.createAdminAccount] Creating admin account");
+
+        // 이미 ADMIN 역할을 가진 사용자가 있는지 확인
+        boolean adminExists = userRepository.findAll().stream()
+                .anyMatch(user -> user.getRole() == Role.ADMIN);
+
+        if (adminExists) {
+            log.warn("[DevAuthController.createAdminAccount] Admin account already exists");
+            throw new CustomException(ErrorCode.ADMIN_ALREADY_EXISTS);
+        }
+
+        // 관리자 계정 생성
+        User admin = User.builder()
+                .googleId("admin-test-user")
+                .email("admin@test.local")
+                .name("관리자")
+                .profileImage(null)
+                .role(Role.ADMIN)
+                .build();
+
+        User savedAdmin = userRepository.save(admin);
+        log.info("[DevAuthController.createAdminAccount] Admin account created with id: {}", savedAdmin.getId());
+
+        return ApiResponse.success(
+                SuccessCode.CREATED,
+                AuthResponseDto.UserInfo.builder()
+                        .id(savedAdmin.getId())
+                        .email(savedAdmin.getEmail())
+                        .name(savedAdmin.getName())
+                        .profileImage(savedAdmin.getProfileImage())
+                        .role(savedAdmin.getRole())
+                        .build()
+        );
+    }
+
+    @PostMapping("/token-admin")
+    @Operation(
+            summary = "관리자 JWT 토큰 발급 (테스트용)",
+            description = "관리자 계정의 JWT 토큰을 발급합니다. 관리자 계정이 없으면 오류를 반환합니다. " +
+                    "**⚠️ 개발/테스트 환경에서만 사용 가능합니다.**"
+    )
+    @Transactional(readOnly = true)
+    public ApiResponse<AuthResponseDto.LoginResponse> issueAdminToken() {
+        log.info("[DevAuthController.issueAdminToken] Issuing admin token");
+
+        // ADMIN 역할을 가진 사용자 찾기
+        User admin = userRepository.findAll().stream()
+                .filter(user -> user.getRole() == Role.ADMIN)
+                .findFirst()
+                .orElseThrow(() -> {
+                    log.warn("[DevAuthController.issueAdminToken] Admin account not found");
+                    return new CustomException(ErrorCode.MEMBER_NOT_FOUND);
+                });
+
+        String accessToken = jwtTokenProvider.createAccessToken(admin.getId(), admin.getRole());
+        String refreshToken = jwtTokenProvider.createRefreshToken(admin.getId(), admin.getRole());
+
+        log.info("[DevAuthController.issueAdminToken] Admin token issued for userId: {}", admin.getId());
+
+        return ApiResponse.success(
+                SuccessCode.OK,
+                AuthResponseDto.LoginResponse.builder()
+                        .accessToken(accessToken)
+                        .refreshToken(refreshToken)
+                        .accessTokenExpiresIn(jwtTokenProvider.getAccessTokenExpiry())
+                        .isNewUser(false)
+                        .user(AuthResponseDto.UserInfo.builder()
+                                .id(admin.getId())
+                                .email(admin.getEmail())
+                                .name(admin.getName())
+                                .profileImage(admin.getProfileImage())
+                                .role(admin.getRole())
+                                .build())
+                        .build()
+        );
+    }
 }

src/main/java/com/umc/goodgame/global/config/SecurityConfig.java

@@ -33,21 +33,18 @@ public class SecurityConfig {
 
     // 인증 없이 접근 가능한 경로
     private static final String[] PUBLIC_ENDPOINTS = {
-            "/**",
-        //     // Root (Swagger 리다이렉트)
-        //     "/",
-        //     // Actuator
-        //     "/actuator/health",
-        //     // Auth (로그인, 콜백, 토큰 재발급, 개발용 토큰)
-        //     "/auth/**",
-        //     // Admin Test (테스트용 관리자 계정 생성/토큰 발급)
-        //     "/admin/test/**",
-        //     // H2 Console (local only)
-        //     "/h2-console/**",
-        //     // Swagger
-        //     "/swagger-ui/**",
-        //     "/swagger-ui.html",
-        //     "/v3/api-docs/**",
+            // Root (Swagger 리다이렉트)
+            "/",
+            // Actuator
+            "/actuator/health",
+            // Auth (로그인, 콜백, 토큰 재발급, 개발용 토큰)
+            "/auth/**",
+            // H2 Console (local only)
+            "/h2-console/**",
+            // Swagger
+            "/swagger-ui/**",
+            "/swagger-ui.html",
+            "/v3/api-docs/**",
     };
 
     @Bean
@@ -75,7 +72,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 // 권한 설정
                 .authorizeHttpRequests(auth -> auth
                         .requestMatchers(PUBLIC_ENDPOINTS).permitAll()
-                        .requestMatchers("/admin/**").hasRole("ADMIN")
+                        .requestMatchers("/api/admin/**").hasAuthority("ROLE_ADMIN")
                         .anyRequest().authenticated()
                 )