feat, fix(analysis): 백엔드 로직(검증/락 등) 개선, 프론트 UI 개선

feat, fix(analysis): 백엔드 로직(검증/락 등) 개선, 프론트 UI 개선

Author: Hyeseung-OH

backend/build.gradle.kts

@@ -43,15 +43,15 @@ dependencies {
     testImplementation("org.mockito:mockito-junit-jupiter")
 	testRuntimeOnly("org.junit.platform:junit-platform-launcher")
     implementation("org.springframework.boot:spring-boot-starter-webflux")
-
     implementation("org.springframework.boot:spring-boot-starter-validation")
     implementation("org.springframework.boot:spring-boot-starter-mail")
     implementation("org.springframework.boot:spring-boot-starter-data-redis")
-
     implementation("io.jsonwebtoken:jjwt-api:0.13.0")
     implementation("io.jsonwebtoken:jjwt-impl:0.13.0")
     implementation("io.jsonwebtoken:jjwt-jackson:0.13.0")
     implementation("org.springframework.boot:spring-boot-starter-security")
+    implementation("org.springframework.retry:spring-retry")
+    implementation("org.springframework.boot:spring-boot-starter-aop")
 }
 
 tasks.withType<Test> {

backend/src/main/java/com/backend/BackendApplication.java

@@ -3,9 +3,11 @@
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.data.jpa.repository.config.EnableJpaAuditing;
+import org.springframework.retry.annotation.EnableRetry;
 
 @SpringBootApplication
 @EnableJpaAuditing
+@EnableRetry
 public class BackendApplication {
 
     public static void main(String[] args) {

backend/src/main/java/com/backend/domain/analysis/controller/AnalysisController.java

@@ -16,6 +16,7 @@
 import com.backend.global.response.ApiResponse;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.http.ResponseEntity;
 import org.springframework.transaction.annotation.Transactional;
 import org.springframework.web.bind.annotation.*;
@@ -24,6 +25,7 @@
 import java.util.ArrayList;
 import java.util.List;
 
+@Slf4j
 @RestController
 @RequiredArgsConstructor
 @RequestMapping("/api/analysis")
@@ -79,16 +81,13 @@ public ResponseEntity<ApiResponse<HistoryResponseDto>> getAnalysisByRepositories
             @PathVariable("repositoriesId") Long repoId,
             HttpServletRequest httpRequest
     ){
-        Long jwtUserId = jwtUtil.getUserId(httpRequest);
-        if (!jwtUserId.equals(userId)) {
-            throw new BusinessException(ErrorCode.FORBIDDEN);
-        }
 
         // 1. Repository 정보 조회
         Repositories repository = repositoryService.findById(repoId)
                 .orElseThrow(() -> new BusinessException(ErrorCode.GITHUB_REPO_NOT_FOUND));
 
-        RepositoryResponse repositoryResponse = new RepositoryResponse(repository);
+        // 권한 검증
+        validateAccess(httpRequest, userId, repository);
 
         // 2. 분석 결과 목록 조회 (최신순 정렬)
         List<AnalysisResult> analysisResults =
@@ -104,6 +103,7 @@ public ResponseEntity<ApiResponse<HistoryResponseDto>> getAnalysisByRepositories
         }
 
         // 4. 응답 조합
+        RepositoryResponse repositoryResponse = new RepositoryResponse(repository);
         HistoryResponseDto response = HistoryResponseDto.of(repositoryResponse, versions);
 
         return ResponseEntity.ok(ApiResponse.success(response));
@@ -118,17 +118,15 @@ public ResponseEntity<ApiResponse<AnalysisResultResponseDto>> getAnalysisDetail(
             @PathVariable Long analysisId,
             HttpServletRequest httpRequest
     ) {
-        Long jwtUserId = jwtUtil.getUserId(httpRequest);
-        if (!jwtUserId.equals(userId)) {
-            throw new BusinessException(ErrorCode.FORBIDDEN);
-        }
-
         // 분석 결과 조회
         AnalysisResult analysisResult = analysisService.getAnalysisById(analysisId);
 
         if (!analysisResult.getRepositories().getId().equals(repositoryId)) {
             throw new BusinessException(ErrorCode.INVALID_INPUT_VALUE);
         }
+        
+        // 권한 검증
+        validateAccess(httpRequest, userId, analysisResult.getRepositories());
 
         AnalysisResultResponseDto response =
                 new AnalysisResultResponseDto(analysisResult, analysisResult.getScore());
@@ -163,7 +161,7 @@ public ResponseEntity<ApiResponse<Void>> deleteAnalysisResult(
             throw new BusinessException(ErrorCode.FORBIDDEN);
         }
 
-        analysisService.deleteAnalysisResult(analysisId, userId);
+        analysisService.deleteAnalysisResult(analysisId, repositoryId, userId);
         return ResponseEntity.ok(ApiResponse.success());
     }
 
@@ -193,4 +191,41 @@ public SseEmitter stream(@PathVariable Long userId,
 
         return analysisProgressService.connect(userId);
     }
+
+    /**
+     * 리포지토리 접근 권한 검증
+     * - 공개 리포지토리: 누구나 접근 가능 (비로그인 포함)
+     * - 비공개 리포지토리: 소유자만 접근 가능
+     */
+
+    private void validateAccess(HttpServletRequest requeset, Long pathUserId, Repositories repository) {
+        Long jwtUserId = jwtUtil.getUserId(requeset);
+
+        // 1. 공개 리포지토리일 경우
+        if(repository.isPublicRepository()) {
+            if (jwtUserId == null) {
+                log.warn("비로그인 사용자의 공개 리포지토리 접근 시도: repoId={}", repository.getId());
+            }
+
+            if (!jwtUserId.equals(pathUserId)) {
+                log.warn("다른 사용자의 공개 리포지토리 접근 시도: jwtUserId={}, pathUserId={}, repoId={}",
+                        jwtUserId, pathUserId, repository.getId());
+            }
+            return;
+        }
+
+        // 2. 비공개 리포지토리일 경우
+        // 2-1. 비로그인
+        if (jwtUserId == null) {
+            log.warn("비로그인 사용자의 비공개 리포지토리 접근 시도: repoId={}", repository.getId());
+            throw new BusinessException(ErrorCode.FORBIDDEN);
+        }
+
+        // 2-2. 다른 사용자
+        if (!jwtUserId.equals(pathUserId)) {
+            log.warn("권한 없는 접근 시도: jwtUserId={}, pathUserId={}, repoId={}",
+                    jwtUserId, pathUserId, repository.getId());
+            throw new BusinessException(ErrorCode.FORBIDDEN);
+        }
+    }
 }

backend/src/main/java/com/backend/domain/analysis/service/AnalysisService.java

@@ -15,6 +15,7 @@
 import org.springframework.transaction.annotation.Transactional;
 
 import java.util.List;
+import java.util.concurrent.ConcurrentHashMap;
 
 @Slf4j
 @Service
@@ -26,6 +27,9 @@ public class AnalysisService {
     private final RepositoryJpaRepository repositoryJpaRepository;
     private final SseProgressNotifier sseProgressNotifier;
 
+    // 인메모리 락
+    private final ConcurrentHashMap<String, Boolean> processingRepositories = new ConcurrentHashMap<>();
+
     /* Analysis 분석 프로세스 오케스트레이션 담당
     * 1. GitHub URL 파싱 및 검증
     * 2. Repository 도메인을 통한 데이터 수집
@@ -38,35 +42,49 @@ public Long analyze(String githubUrl, Long userId) {
         String owner = repoInfo[0];
         String repo = repoInfo[1];
 
-        sseProgressNotifier.notify(userId, "status", "분석 시작");
+        String cacheKey = userId + ":" + githubUrl;
 
-        // Repository 데이터 수집
-        RepositoryData repositoryData;
+        // 현재 처리 중인지 체크
+        if (processingRepositories.putIfAbsent(cacheKey, true) != null) {
+            log.warn("⚠중복 분석 요청 차단: userId={}, url={}", userId, githubUrl);
+            throw new BusinessException(ErrorCode.ANALYSIS_IN_PROGRESS);
+        }
 
         try {
-            repositoryData = repositoryService.fetchAndSaveRepository(owner, repo, userId);
-            log.info("🫠 Repository Data 수집 완료: {}", repositoryData);
-        } catch (BusinessException e) {
-            log.error("Repository 데이터 수집 실패: {}/{}", owner, repo, e);
-            throw handleRepositoryFetchError(e, owner, repo);
-        }
+            sseProgressNotifier.notify(userId, "status", "분석 시작");
 
-        Repositories savedRepository = repositoryJpaRepository
-                .findByHtmlUrl(repositoryData.getRepositoryUrl())
-                .orElseThrow(() -> new BusinessException(ErrorCode.GITHUB_REPO_NOT_FOUND));
+            // Repository 데이터 수집
+            RepositoryData repositoryData;
 
-        Long repositoryId = savedRepository.getId();
+            try {
+                repositoryData = repositoryService.fetchAndSaveRepository(owner, repo, userId);
+                log.info("🫠 Repository Data 수집 완료: {}", repositoryData);
+            } catch (BusinessException e) {
+                log.error("Repository 데이터 수집 실패: {}/{}", owner, repo, e);
+                throw handleRepositoryFetchError(e, owner, repo);
+            }
 
-        // OpenAI API 데이터 분석 및 저장
-        try {
-            evaluationService.evaluateAndSave(repositoryData);
-        } catch (BusinessException e) {
-            sseProgressNotifier.notify(userId, "error", "AI 평가 실패: " + e.getMessage());
-            throw e;
-        }
+            Repositories savedRepository = repositoryJpaRepository
+                    .findByHtmlUrl(repositoryData.getRepositoryUrl())
+                    .orElseThrow(() -> new BusinessException(ErrorCode.GITHUB_REPO_NOT_FOUND));
+
+            Long repositoryId = savedRepository.getId();
 
-        sseProgressNotifier.notify(userId, "complete", "최종 리포트 생성");
-        return repositoryId;
+            // OpenAI API 데이터 분석 및 저장
+            try {
+                evaluationService.evaluateAndSave(repositoryData);
+            } catch (BusinessException e) {
+                sseProgressNotifier.notify(userId, "error", "AI 평가 실패: " + e.getMessage());
+                throw e;
+            }
+
+            sseProgressNotifier.notify(userId, "complete", "최종 리포트 생성");
+            return repositoryId;
+        } finally {
+            // 락 해제
+            processingRepositories.remove(cacheKey);
+            log.info("분석 락 해제: cacheKey={}", cacheKey);
+        }
     }
 
     private String[] parseGitHubUrl(String githubUrl) {
@@ -135,15 +153,15 @@ public void delete(Long repositoriesId, Long userId){
 
     // 특정 분석 결과 삭제
     @Transactional
-    public void deleteAnalysisResult(Long analysisResultId, Long memberId) {
+    public void deleteAnalysisResult(Long analysisResultId, Long repositoryId, Long memberId) {
         if (analysisResultId == null) {
             throw new BusinessException(ErrorCode.INVALID_INPUT_VALUE);
         }
 
         AnalysisResult analysisResult = analysisResultRepository.findById(analysisResultId)
                 .orElseThrow(() -> new BusinessException(ErrorCode.ANALYSIS_NOT_FOUND));
 
-        if (!analysisResult.getRepositories().getId().equals(analysisResultId)) {
+        if (!analysisResult.getRepositories().getId().equals(repositoryId)) {
             throw new BusinessException(ErrorCode.INVALID_INPUT_VALUE);
         }
 

backend/src/main/java/com/backend/domain/community/dto/response/CommunityResponseDto.java

@@ -18,7 +18,8 @@ public record CommunityResponseDto(
         List<String> language,
         int totalScore,
         LocalDateTime createDate,
-        boolean vewingStatus
+        boolean vewingStatus,
+        String htmlUrl
 ) {
     public CommunityResponseDto(Repositories repositories, AnalysisResult analysis, Score score) {
         this(
@@ -33,7 +34,8 @@ public CommunityResponseDto(Repositories repositories, AnalysisResult analysis,
                         .collect(Collectors.toList()),
                 score.getTotalScore(),
                 analysis.getCreateDate(),
-                repositories.isPublicRepository()
+                repositories.isPublicRepository(),
+                repositories.getHtmlUrl()
         );
     }
 }

backend/src/main/java/com/backend/domain/repository/dto/response/RepositoryResponse.java

@@ -18,7 +18,8 @@ public record RepositoryResponse(
         boolean publicRepository,
         String mainBranch,
         List<String> languages,
-        LocalDateTime createDate
+        LocalDateTime createDate,
+        Long ownerId
 ) {
     public RepositoryResponse(Repositories repositories) {
         this(
@@ -31,7 +32,8 @@ public RepositoryResponse(Repositories repositories) {
                 repositories.getLanguages().stream()
                         .map(lang -> lang.getLanguage().name())
                         .collect(Collectors.toList()),
-                repositories.getCreateDate()
+                repositories.getCreateDate(),
+                repositories.getUser().getId()
         );
     }
 }