Merge pull request #562 from Moadong/feature/encrypt-applicants-answer

Author: lepitaaar

backend/src/main/java/moadong/club/payload/dto/ClubApplicantsResult.java

@@ -1,23 +1,43 @@
 package moadong.club.payload.dto;
 
 import lombok.Builder;
+import lombok.extern.slf4j.Slf4j;
 import moadong.club.entity.ClubApplication;
 import moadong.club.entity.ClubQuestionAnswer;
 import moadong.club.enums.ApplicationStatus;
+import moadong.global.exception.ErrorCode;
+import moadong.global.exception.RestApiException;
+import moadong.global.util.AESCipher;
 
+import java.util.ArrayList;
 import java.util.List;
 
 @Builder
+@Slf4j
 public record ClubApplicantsResult(
         String questionId,
         ApplicationStatus status,
         List<ClubQuestionAnswer> answers
 ) {
-    public static ClubApplicantsResult of(ClubApplication application) {
+    public static ClubApplicantsResult of(ClubApplication application, AESCipher cipher) {
+        List<ClubQuestionAnswer> decryptedAnswers = new ArrayList<>();
+        try {
+            for (ClubQuestionAnswer answer : application.getAnswers()) {
+                String decryptedValue = cipher.decrypt(answer.getValue());
+                decryptedAnswers.add(ClubQuestionAnswer.builder()
+                        .id(answer.getId())
+                        .value(decryptedValue)
+                        .build());
+            }
+        } catch (Exception e) {
+            log.error("AES_CIPHER_ERROR", e);
+            throw new RestApiException(ErrorCode.AES_CIPHER_ERROR);
+        }
+
         return ClubApplicantsResult.builder()
                 .questionId(application.getQuestionId())
                 .status(application.getStatus())
-                .answers(application.getAnswers())
+                .answers(decryptedAnswers)
                 .build();
     }
-}
+}

backend/src/main/java/moadong/club/service/ClubApplyService.java

@@ -1,9 +1,9 @@
 package moadong.club.service;
 
 import lombok.AllArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import moadong.club.entity.*;
 import moadong.club.enums.ClubApplicationQuestionType;
-import moadong.club.enums.ApplicationStatus;
 import moadong.club.payload.dto.ClubApplicantsResult;
 import moadong.club.payload.request.ClubApplicationCreateRequest;
 import moadong.club.payload.request.ClubApplicationEditRequest;
@@ -16,6 +16,7 @@
 import moadong.global.exception.ErrorCode;
 import moadong.global.exception.RestApiException;
 import moadong.global.payload.Response;
+import moadong.global.util.AESCipher;
 import moadong.user.payload.CustomUserDetails;
 import org.springframework.http.ResponseEntity;
 import org.springframework.stereotype.Service;
@@ -26,11 +27,12 @@
 
 @Service
 @AllArgsConstructor
+@Slf4j
 public class ClubApplyService {
-
     private final ClubRepository clubRepository;
     private final ClubQuestionRepository clubQuestionRepository;
     private final ClubApplicationRepository clubApplicationRepository;
+    private final AESCipher cipher;
 
     public void createClubApplication(String clubId, CustomUserDetails user, ClubApplicationCreateRequest request) {
         ClubQuestion clubQuestion = getClubQuestion(clubId, user);
@@ -64,12 +66,20 @@ public void applyToClub(String clubId, ClubApplyRequest request) {
 
         validateAnswers(request.questions(), clubQuestion);
 
-        List<ClubQuestionAnswer> answers = request.questions()
-                .stream().map(answer -> ClubQuestionAnswer.builder()
+        List<ClubQuestionAnswer> answers = new ArrayList<>();
+
+        try {
+            for (ClubApplyRequest.Answer answer : request.questions()) {
+                String encryptedValue = cipher.encrypt(answer.value());
+                answers.add(ClubQuestionAnswer.builder()
                         .id(answer.id())
-                        .value(answer.value())
-                        .build()
-                ).toList();
+                        .value(encryptedValue)
+                        .build());
+            }
+        } catch (Exception e) {
+            log.error("AES_CIPHER_ERROR", e);
+            throw new RestApiException(ErrorCode.AES_CIPHER_ERROR);
+        }
 
         ClubApplication application = ClubApplication.builder()
                 .questionId(clubQuestion.getClubId())
@@ -95,7 +105,7 @@ public ClubApplyInfoResponse getClubApplyInfo(String clubId, CustomUserDetails u
         int accepted = 0;
 
         for (ClubApplication app : submittedApplications) {
-            applications.add(ClubApplicantsResult.of(app));
+            applications.add(ClubApplicantsResult.of(app, cipher));
 
             switch (app.getStatus()) {
                 case SUBMITTED, SCREENING -> reviewRequired++;

backend/src/main/java/moadong/global/exception/ErrorCode.java

@@ -38,6 +38,8 @@ public enum ErrorCode {
     LONG_EXCEED_LENGTH(HttpStatus.BAD_REQUEST, "800-3", "장문형 최대 글자를 초과하였습니다."),
     QUESTION_NOT_FOUND(HttpStatus.NOT_FOUND, "800-4", "존재하지 않은 질문입니다."),
     REQUIRED_QUESTION_MISSING(HttpStatus.BAD_REQUEST, "800-5", "필수 응답 질문이 누락되었습니다."),
+
+    AES_CIPHER_ERROR(HttpStatus.INTERNAL_SERVER_ERROR, "900-1", "암호화 중 오류가 발생했습니다.")
     ;
 
     private final HttpStatus httpStatus;

backend/src/main/java/moadong/global/util/AESCipher.java

@@ -0,0 +1,56 @@
+package moadong.global.util;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Component;
+
+import javax.crypto.Cipher;
+import javax.crypto.spec.GCMParameterSpec;
+import javax.crypto.spec.IvParameterSpec;
+import javax.crypto.spec.SecretKeySpec;
+import java.nio.charset.StandardCharsets;
+import java.util.Base64;
+
+@Component
+public class AESCipher {
+
+    @Value("${application.encryption.key}")
+    private String key;
+
+    @Value("${application.encryption.iv}")
+    private String iv;
+
+    /**
+     * 문자열을 AES-256 알고리즘으로 암호화합니다.
+     *
+     * @param text 암호화할 문자열
+     * @return Base64로 인코딩된 암호화된 문자열
+     * @throws Exception 암호화 중 오류 발생 시
+     */
+    public String encrypt(String text) throws Exception {
+        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+        SecretKeySpec keySpec = new SecretKeySpec(key.getBytes(StandardCharsets.UTF_8), "AES");
+        GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(128, iv.getBytes(StandardCharsets.UTF_8));
+        cipher.init(Cipher.ENCRYPT_MODE, keySpec, gcmParameterSpec);
+
+        byte[] encrypted = cipher.doFinal(text.getBytes(StandardCharsets.UTF_8));
+        return Base64.getEncoder().encodeToString(encrypted);
+    }
+
+    /**
+     * AES-256 알고리즘으로 암호화된 문자열을 복호화합니다.
+     *
+     * @param cipherText Base64로 인코딩된 암호화된 문자열
+     * @return 복호화된 원본 문자열
+     * @throws Exception 복호화 중 오류 발생 시
+     */
+    public String decrypt(String cipherText) throws Exception {
+        Cipher cipher = Cipher.getInstance("AES/GCM/NoPadding");
+        SecretKeySpec keySpec = new SecretKeySpec(key.getBytes(StandardCharsets.UTF_8), "AES");
+        GCMParameterSpec gcmParameterSpec = new GCMParameterSpec(128, iv.getBytes(StandardCharsets.UTF_8));
+        cipher.init(Cipher.DECRYPT_MODE, keySpec, gcmParameterSpec);
+
+        byte[] decodedBytes = Base64.getDecoder().decode(cipherText);
+        byte[] decrypted = cipher.doFinal(decodedBytes);
+        return new String(decrypted, StandardCharsets.UTF_8);
+    }
+}

backend/src/main/java/moadong/media/util/GoogleDriveConfig.java

@@ -1,5 +1,5 @@
 //package moadong.media.util;
-//
+
 //import com.google.api.client.googleapis.javanet.GoogleNetHttpTransport;
 //import com.google.api.client.json.jackson2.JacksonFactory;
 //import com.google.api.services.drive.Drive;
@@ -12,7 +12,9 @@
 //import org.springframework.context.annotation.Bean;
 //import org.springframework.context.annotation.Configuration;
 //import org.springframework.util.ResourceUtils;
-//
+
+
+
 //@Configuration
 //public class GoogleDriveConfig {
 //