feat(analysis, global): 검증 로직 개선, 헤더 수정

Hyeseung-OH · Hyeseung-OH · commit 22d023c3f8c7 · 2025-10-24T01:05:26.000+09:00
diff --git a/backend/src/main/java/com/backend/domain/analysis/controller/AnalysisController.java b/backend/src/main/java/com/backend/domain/analysis/controller/AnalysisController.java
@@ -16,6 +16,7 @@
 import com.backend.global.response.ApiResponse;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.http.ResponseEntity;
 import org.springframework.transaction.annotation.Transactional;
 import org.springframework.web.bind.annotation.*;
@@ -24,6 +25,7 @@
 import java.util.ArrayList;
 import java.util.List;
 
+@Slf4j
 @RestController
 @RequiredArgsConstructor
 @RequestMapping("/api/analysis")
@@ -84,16 +86,8 @@ public ResponseEntity<ApiResponse<HistoryResponseDto>> getAnalysisByRepositories
         Repositories repository = repositoryService.findById(repoId)
                 .orElseThrow(() -> new BusinessException(ErrorCode.GITHUB_REPO_NOT_FOUND));
 
-        RepositoryResponse repositoryResponse = new RepositoryResponse(repository);
-
         // 권한 검증
-        Long jwtUserId = jwtUtil.getUserId(httpRequest);
-        boolean isOwner = jwtUserId.equals(userId);
-        boolean isPublic = repository.isPublicRepository();
-
-        if (!isOwner && !isPublic) {
-            throw new BusinessException(ErrorCode.FORBIDDEN);
-        }
+        validateAccess(httpRequest, userId, repository);
 
         // 2. 분석 결과 목록 조회 (최신순 정렬)
         List<AnalysisResult> analysisResults =
@@ -109,6 +103,7 @@ public ResponseEntity<ApiResponse<HistoryResponseDto>> getAnalysisByRepositories
         }
 
         // 4. 응답 조합
+        RepositoryResponse repositoryResponse = new RepositoryResponse(repository);
         HistoryResponseDto response = HistoryResponseDto.of(repositoryResponse, versions);
 
         return ResponseEntity.ok(ApiResponse.success(response));
@@ -131,14 +126,7 @@ public ResponseEntity<ApiResponse<AnalysisResultResponseDto>> getAnalysisDetail(
         }
         
         // 권한 검증
-        Long jwtUserId = jwtUtil.getUserId(httpRequest);
-        Repositories repository = analysisResult.getRepositories();
-        boolean isOwner = jwtUserId.equals(userId);
-        boolean isPublic = repository.isPublicRepository();
-
-        if (!isOwner && !isPublic) {
-            throw new BusinessException(ErrorCode.FORBIDDEN);
-        }
+        validateAccess(httpRequest, userId, analysisResult.getRepositories());
 
         AnalysisResultResponseDto response =
                 new AnalysisResultResponseDto(analysisResult, analysisResult.getScore());
@@ -203,4 +191,41 @@ public SseEmitter stream(@PathVariable Long userId,
 
         return analysisProgressService.connect(userId);
     }
+
+    /**
+     * 리포지토리 접근 권한 검증
+     * - 공개 리포지토리: 누구나 접근 가능 (비로그인 포함)
+     * - 비공개 리포지토리: 소유자만 접근 가능
+     */
+
+    private void validateAccess(HttpServletRequest requeset, Long pathUserId, Repositories repository) {
+        Long jwtUserId = jwtUtil.getUserId(requeset);
+
+        // 1. 공개 리포지토리일 경우
+        if(repository.isPublicRepository()) {
+            if (jwtUserId == null) {
+                log.warn("비로그인 사용자의 공개 리포지토리 접근 시도: repoId={}", repository.getId());
+            }
+
+            if (!jwtUserId.equals(pathUserId)) {
+                log.warn("다른 사용자의 공개 리포지토리 접근 시도: jwtUserId={}, pathUserId={}, repoId={}",
+                        jwtUserId, pathUserId, repository.getId());
+            }
+            return;
+        }
+
+        // 2. 비공개 리포지토리일 경우
+        // 2-1. 비로그인
+        if (jwtUserId == null) {
+            log.warn("비로그인 사용자의 비공개 리포지토리 접근 시도: repoId={}", repository.getId());
+            throw new BusinessException(ErrorCode.FORBIDDEN);
+        }
+
+        // 2-2. 다른 사용자
+        if (!jwtUserId.equals(pathUserId)) {
+            log.warn("권한 없는 접근 시도: jwtUserId={}, pathUserId={}, repoId={}",
+                    jwtUserId, pathUserId, repository.getId());
+            throw new BusinessException(ErrorCode.FORBIDDEN);
+        }
+    }
 }
diff --git a/front/src/components/Header.tsx b/front/src/components/Header.tsx
@@ -47,15 +47,16 @@ export default function Header() {
           <div className="flex items-center gap-6">
             {isLoggedIn ? (
               <>
-                <button onClick={guardNav("/history", "히스토리")} className="text-sm text-muted-foreground hover:text-foreground transition-colors">
-                  히스토리
-                </button>
                 <button onClick={handleCommunityClick} className="text-sm text-muted-foreground hover:text-foreground transition-colors">
                   커뮤니티
                 </button>
-                <Button size="sm" className="bg-primary text-primary-foreground hover:bg-primary/90" onClick={() => router.push("/analysis")}>
-                  시작하기
-                </Button>
+                <button onClick={guardNav("/history", "히스토리")} className="text-sm text-muted-foreground hover:text-foreground transition-colors">
+                  분석내역
+                </button>
+                <button onClick={() => router.push("/analysis")} className="text-sm text-muted-foreground hover:text-foreground transition-colors">
+                  분석하기
+                </button>
+                <div className="w-px h-5 bg-border mx-2" />
                 <button onClick={guardNav("/profile", "마이페이지")} className="text-sm text-muted-foreground hover:text-foreground transition-colors">
                   {isLoadingUser ? '로딩중...' : user?.name ? `${user.name}(마이페이지)` : '마이페이지'}
                 </button>
@@ -78,8 +79,8 @@ export default function Header() {
                   <Button variant="ghost" size="sm" onClick={() => router.push("/login")}>
                     로그인
                   </Button>
-                  <Button size="sm" className="bg-primary text-primary-foreground hover:bg-primary/90" onClick={() => router.push("/analysis")}>
-                    시작하기
+                  <Button size="sm" className="bg-primary text-primary-foreground hover:bg-primary/90" onClick={() => router.push("/signup")}>
+                    회원가입
                   </Button>
                 </div>
               </>
diff --git a/front/src/hooks/auth/useAuth.ts b/front/src/hooks/auth/useAuth.ts
@@ -16,7 +16,10 @@ export function useAuth() {
 
   const fetchUserInfo = async () => {
     const token = localStorage.getItem('accessToken');
-    if (!token) return;
+    if (!token) {
+      setIsInitializing(false);
+      return;
+    }
 
     try {
       setIsLoadingUser(true);
