Merge pull request #17 from Geumpumta/wifi

feat : 교내 Wi-Fi 검증을 위한 서버 측 IP 추출 및 및 Nginx 프록시 대응

Author: Juhye0k

src/main/java/com/gpt/geumpumtabackend/global/wifi/IpUtil.java

@@ -0,0 +1,38 @@
+package com.gpt.geumpumtabackend.global.wifi;
+
+import jakarta.servlet.http.HttpServletRequest;
+
+public class IpUtil {
+
+    public static String getClientIp(HttpServletRequest request) {
+        String ip = request.getHeader("X-Real-IP");
+
+        if(isUnknown(ip)) {
+            String xForwardedFor = request.getHeader("X-Forwarded-For");
+            if(!isUnknown(xForwardedFor)) {
+                String[] candidates =xForwardedFor.split(",");
+                for (int i = candidates.length - 1; i >= 0; i--) {
+                    String candidate = candidates[i].trim();
+                    if (!isUnknown(candidate)) {
+                        ip = candidate;
+                        break;
+                    }
+                }
+            }
+        }
+
+        if(isUnknown(ip)){
+            ip = request.getRemoteAddr();
+        }
+
+        if (ip != null && ip.contains(",")) {
+            ip = ip.split(",")[0].trim();
+        }
+
+        return ip;
+    }
+
+    private static boolean isUnknown(String ip) {
+        return ip == null || ip.isEmpty() || "unknown".equalsIgnoreCase(ip);
+    }
+}

src/main/java/com/gpt/geumpumtabackend/study/api/StudySessionApi.java

@@ -17,6 +17,7 @@
 import io.swagger.v3.oas.annotations.media.Schema;
 import io.swagger.v3.oas.annotations.responses.ApiResponse;
 import io.swagger.v3.oas.annotations.tags.Tag;
+import jakarta.servlet.http.HttpServletRequest;
 import jakarta.validation.Valid;
 import org.springframework.http.ResponseEntity;
 import org.springframework.security.access.prepost.PreAuthorize;
@@ -103,7 +104,8 @@ ResponseEntity<ResponseBody<StudySessionResponse>> getTodayStudySession(
     @PreAuthorize("isAuthenticated() and hasRole('USER')")
     ResponseEntity<ResponseBody<StudyStartResponse>> startStudySession(
             @Valid @RequestBody StudyStartRequest request,
-            @Parameter(hidden = true) Long userId
+            @Parameter(hidden = true) Long userId,
+            HttpServletRequest httpServletRequest
     );
 
     @Operation(
@@ -168,6 +170,6 @@ ResponseEntity<ResponseBody<Void>> endStudySession(
     @PreAuthorize("isAuthenticated() and hasRole('USER')")
     ResponseEntity<ResponseBody<Void>> processHeartBeat(
             @Valid @RequestBody HeartBeatRequest heartBeatRequest,
-            @Parameter(hidden = true) Long userId
-    );
+            @Parameter(hidden = true) Long userId,
+            HttpServletRequest httpServletRequest);
 }

src/main/java/com/gpt/geumpumtabackend/study/controller/StudySessionController.java

@@ -10,6 +10,7 @@
 import com.gpt.geumpumtabackend.study.dto.response.StudySessionResponse;
 import com.gpt.geumpumtabackend.study.dto.response.StudyStartResponse;
 import com.gpt.geumpumtabackend.study.service.StudySessionService;
+import jakarta.servlet.http.HttpServletRequest;
 import jakarta.validation.Valid;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
@@ -42,8 +43,10 @@ public ResponseEntity<ResponseBody<StudySessionResponse>> getTodayStudySession(L
     @PostMapping("/start")
     @PreAuthorize("isAuthenticated() and hasRole('USER')")
     @AssignUserId
-    public ResponseEntity<ResponseBody<StudyStartResponse>> startStudySession(@Valid @RequestBody StudyStartRequest request, Long userId){
-        return ResponseEntity.ok(ResponseUtil.createSuccessResponse(studySessionService.startStudySession(request, userId)));
+    public ResponseEntity<ResponseBody<StudyStartResponse>> startStudySession(@Valid @RequestBody StudyStartRequest request,
+                                                                              Long userId,
+                                                                              HttpServletRequest httpServletRequest){
+        return ResponseEntity.ok(ResponseUtil.createSuccessResponse(studySessionService.startStudySession(request, userId, httpServletRequest)));
     }
 
     /*
@@ -63,8 +66,8 @@ public ResponseEntity<ResponseBody<Void>> endStudySession(@Valid @RequestBody St
     @PostMapping("/heart-beat")
     @PreAuthorize("isAuthenticated() and hasRole('USER')")
     @AssignUserId
-    public ResponseEntity<ResponseBody<Void>> processHeartBeat(@Valid @RequestBody HeartBeatRequest heartBeatRequest, Long userId){
-        studySessionService.updateHeartBeat(heartBeatRequest, userId);
+    public ResponseEntity<ResponseBody<Void>> processHeartBeat(@Valid @RequestBody HeartBeatRequest heartBeatRequest, Long userId, HttpServletRequest httpServletRequest){
+        studySessionService.updateHeartBeat(heartBeatRequest, userId, httpServletRequest);
         return ResponseEntity.ok(ResponseUtil.createSuccessResponse());
     }
 }

src/main/java/com/gpt/geumpumtabackend/study/dto/request/HeartBeatRequest.java

@@ -9,11 +9,10 @@ public record HeartBeatRequest(
 
         @NotBlank(message = "SSID는 필수입니다")
         String ssid,
-        
-        String bssid,  // 선택적 (null 가능)
-        
-        @NotBlank(message = "IP 주소는 필수입니다")
-        String ipAddress
+
+        @NotBlank(message = "BSSID는 필수입니다")
+        String bssid
+
 ) {
 
 }

src/main/java/com/gpt/geumpumtabackend/study/dto/request/StudyStartRequest.java

@@ -11,13 +11,11 @@ public record StudyStartRequest(
 
         @NotBlank(message = "SSID는 필수입니다")
         String ssid,
-        
-        String bssid,  // 선택적 (null 가능)
-        
-        @NotBlank(message = "IP 주소는 필수입니다")
-        String ipAddress
-){
 
+        @NotBlank(message = "BSSID는 필수입니다")
+        String bssid
+
+){
 }
 
 

src/main/java/com/gpt/geumpumtabackend/study/service/StudySessionService.java

@@ -2,6 +2,7 @@
 
 import com.gpt.geumpumtabackend.global.exception.BusinessException;
 import com.gpt.geumpumtabackend.global.exception.ExceptionType;
+import com.gpt.geumpumtabackend.global.wifi.IpUtil;
 import com.gpt.geumpumtabackend.study.domain.StudySession;
 import com.gpt.geumpumtabackend.study.dto.request.HeartBeatRequest;
 import com.gpt.geumpumtabackend.study.dto.request.StudyEndRequest;
@@ -14,6 +15,7 @@
 import com.gpt.geumpumtabackend.wifi.dto.WiFiValidationResult;
 import com.gpt.geumpumtabackend.wifi.service.CampusWiFiValidationService;
 
+import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.stereotype.Service;
@@ -45,10 +47,10 @@ public StudySessionResponse getTodayStudySession(Long userId) {
     공부 시작
      */
     @Transactional
-    public StudyStartResponse startStudySession(StudyStartRequest request, Long userId) {
+    public StudyStartResponse startStudySession(StudyStartRequest request, Long userId, HttpServletRequest httpServletRequest) {
         // Wi-Fi 검증
         WiFiValidationResult validationResult = wifiValidationService.validateFromCache(
-            request.ssid(), request.bssid(), request.ipAddress()
+            request.ssid(), request.bssid(), httpServletRequest
         );
 
         if (!validationResult.isValid()) {
@@ -81,12 +83,12 @@ public void endStudySession(StudyEndRequest request, Long userId) {
     하트비트 처리
      */
     @Transactional
-    public void updateHeartBeat(HeartBeatRequest heartBeatRequest, Long userId) {
+    public void updateHeartBeat(HeartBeatRequest heartBeatRequest, Long userId, HttpServletRequest httpServletRequest) {
         Long sessionId = heartBeatRequest.sessionId();
 
         // Wi-Fi 검증 (캐시 우선 사용)
         WiFiValidationResult validationResult = wifiValidationService.validateFromCache(
-            heartBeatRequest.ssid(), heartBeatRequest.bssid(), heartBeatRequest.ipAddress()
+            heartBeatRequest.ssid(), heartBeatRequest.bssid(), httpServletRequest
         );
 
         if (!validationResult.isValid()) {

src/main/java/com/gpt/geumpumtabackend/wifi/service/CampusWiFiValidationService.java

@@ -1,7 +1,9 @@
 package com.gpt.geumpumtabackend.wifi.service;
 
+import com.gpt.geumpumtabackend.global.wifi.IpUtil;
 import com.gpt.geumpumtabackend.wifi.config.CampusWiFiProperties;
 import com.gpt.geumpumtabackend.wifi.dto.WiFiValidationResult;
+import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.data.redis.core.RedisTemplate;
@@ -23,9 +25,13 @@ public class CampusWiFiValidationService {
     private static final String WIFI_CACHE_KEY_PREFIX = "campus_wifi_validation:";
 
 
-    public WiFiValidationResult validateCampusWiFi(String ssid, String bssid, String ipAddress) {
+    public WiFiValidationResult validateCampusWiFi(String ssid, String bssid, HttpServletRequest request) {
 
         try {
+            // 서버에서 클라이언트 IP 추출
+            String ipAddress = IpUtil.getClientIp(request);
+            log.info("Wi-Fi validation request - SSID: {}, BSSID: {}, IP: {}", ssid, bssid, ipAddress);
+
             // 캠퍼스 내부인지 확인
             boolean isInCampus = isInCampusNetwork(ssid, bssid, ipAddress);
 
@@ -38,33 +44,46 @@ public WiFiValidationResult validateCampusWiFi(String ssid, String bssid, String
             }
 
         } catch (Exception e) {
+            log.error("Wi-Fi validation error", e);
             return WiFiValidationResult.error("Wi-Fi 검증 중 오류가 발생했습니다: " + e.getMessage());
         }
     }
 
 
-    public WiFiValidationResult validateFromCache(String ssid, String bssid, String ipAddress) {
-
-        // IP 주소와 SSID를 통해 키를 생성 후  Redis에서 조회
-        String cacheKey = buildCacheKey(ssid, ipAddress);
-        Boolean cachedResult = (Boolean) redisTemplate.opsForValue().get(cacheKey);
-            
-        if (cachedResult != null) {
-            return cachedResult
-                    ? WiFiValidationResult.valid("캠퍼스 네트워크입니다 (캐시)")
-                    : WiFiValidationResult.invalid("캠퍼스 네트워크가 아닙니다 (캐시)");
+    public WiFiValidationResult validateFromCache(String ssid, String bssid, HttpServletRequest request) {
+        try {
+            // 서버에서 클라이언트 IP 추출
+            String ipAddress = IpUtil.getClientIp(request);
+            log.info("Wi-Fi validation cache request - SSID: {}, BSSID: {}, IP: {}", ssid, bssid, ipAddress);
+            // IP 주소와 SSID를 통해 키를 생성 후 Redis에서 조회
+            String cacheKey = buildCacheKey(ssid, ipAddress);
+            Boolean cachedResult = (Boolean) redisTemplate.opsForValue().get(cacheKey);
+                
+            if (cachedResult != null) {
+                log.debug("Wi-Fi validation cache hit - SSID: {}, IP: {}, Result: {}", ssid, ipAddress, cachedResult);
+                return cachedResult
+                        ? WiFiValidationResult.valid("캠퍼스 네트워크입니다 (캐시)")
+                        : WiFiValidationResult.invalid("캠퍼스 네트워크가 아닙니다 (캐시)");
             }
-        // 캐시에 없으면 전체 검증 수행
-        return validateCampusWiFi(ssid, bssid, ipAddress);
+            
+            // 캐시에 없으면 전체 검증 수행
+            log.debug("Wi-Fi validation cache miss - performing full validation");
+            return validateCampusWiFi(ssid, bssid, request);
+            
+        } catch (Exception e) {
+            log.error("Wi-Fi cache validation error", e);
+            return WiFiValidationResult.error("Wi-Fi 검증 중 오류가 발생했습니다: " + e.getMessage());
+        }
     }
 
 
     private boolean isInCampusNetwork(String ssid, String bssid, String ipAddress) {
+
+        // 설정 파일 Wi-fi 목록 불러오기
         List<CampusWiFiProperties.WiFiNetwork> activeNetworks = wifiProperties.networks()
             .stream()
             .filter(CampusWiFiProperties.WiFiNetwork::active)
             .toList();
-
         for (CampusWiFiProperties.WiFiNetwork network : activeNetworks) {
             // 1. SSID 체크
             if (!network.isValidSSID(ssid)) {

src/main/resources/application-local.yml

@@ -27,7 +27,7 @@ spring:
 
   jpa:
     hibernate:
-      ddl-auto: create
+      ddl-auto: update
     open-in-view: false
     show-sql: true
     properties: