refactor: logging AOP 리팩토링

- 로그 기록 세분화
- 민감한 데이터 마스킹 처리
- 책임에 따른 클래스 분리
- 마스킹 테스트및 검증 완

Author: 7zrv

src/main/java/com/somemore/global/aspect/log/LoggingAspect.java

@@ -0,0 +1,90 @@
+package com.somemore.global.aspect.log;
+
+import com.somemore.global.aspect.log.extractor.ParameterExtractor;
+import com.somemore.global.aspect.log.extractor.RequestExtractor;
+import com.somemore.global.aspect.log.extractor.ResponseExtractor;
+import com.somemore.global.common.response.LoggedResponse;
+import jakarta.servlet.http.HttpServletRequest;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.aspectj.lang.ProceedingJoinPoint;
+import org.aspectj.lang.annotation.Around;
+import org.aspectj.lang.annotation.Aspect;
+import org.aspectj.lang.annotation.Pointcut;
+import org.slf4j.MDC;
+import org.springframework.http.HttpStatus;
+import org.springframework.stereotype.Component;
+
+
+import java.util.UUID;
+
+@RequiredArgsConstructor
+@Slf4j
+@Aspect
+@Component
+public class LoggingAspect {
+
+    private final RequestExtractor requestExtractor;
+    private final ResponseExtractor responseExtractor;
+    private final ParameterExtractor parameterExtractor;
+
+    @Pointcut("execution(* com.somemore.domains.*.controller..*.*(..))")
+    private void controllerPointCut() {}
+
+    @Around("controllerPointCut()")
+    public Object logAround(ProceedingJoinPoint joinPoint) throws Throwable {
+        String requestId = UUID.randomUUID().toString();
+        MDC.put("requestId", requestId);
+
+        try {
+            return doLogAround(joinPoint);
+        } finally {
+            MDC.remove("requestId");
+        }
+    }
+
+    private Object doLogAround(ProceedingJoinPoint joinPoint) throws Throwable {
+        String methodName = joinPoint.getSignature().toShortString();
+        HttpServletRequest request = requestExtractor.getCurrentRequest();
+
+        MDC.put("method", request.getMethod());
+        MDC.put("uri", request.getRequestURI());
+
+        String params = parameterExtractor.extractParameters(joinPoint);
+        log.info("엔드포인트 호출: {} \n- URI: {} \n- Method: {} \n- 파라미터: {}",
+                methodName,
+                request.getRequestURI(),
+                request.getMethod(),
+                params);
+
+        long startTime = System.currentTimeMillis();
+
+        try {
+            Object result = joinPoint.proceed();
+            long elapsedTime = System.currentTimeMillis() - startTime;
+
+            LoggedResponse loggedResponse = responseExtractor.extractResponse(result);
+            log.info("호출 성공: {} \n- 응답 코드: {} \n- 응답 값: {} \n- 실행 시간: {}ms",
+                    methodName,
+                    loggedResponse.getStatusCode(),
+                    loggedResponse.getBody(),
+                    elapsedTime);
+
+            return result;
+        } catch (Exception e) {
+            long elapsedTime = System.currentTimeMillis() - startTime;
+            HttpStatus status = responseExtractor.extractExceptionStatus(e);
+
+            log.warn("예외 발생: {} \n- 예외 코드: {} \n- 예외 타입: {} \n- 예외 메세지: {} \n- 실행 시간: {}ms",
+                    methodName,
+                    status,
+                    e.getClass().getSimpleName(),
+                    e.getMessage(),
+                    elapsedTime);
+
+            throw e;
+        } finally {
+            MDC.clear();
+        }
+    }
+}

src/main/java/com/somemore/global/aspect/log/extractor/ParameterExtractor.java

@@ -0,0 +1,71 @@
+package com.somemore.global.aspect.log.extractor;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.somemore.global.aspect.log.utils.SensitiveDataMasker;
+import lombok.extern.slf4j.Slf4j;
+import org.aspectj.lang.ProceedingJoinPoint;
+import org.aspectj.lang.reflect.MethodSignature;
+import org.springframework.stereotype.Component;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestParam;
+
+import java.lang.reflect.Parameter;
+import java.util.LinkedHashMap;
+import java.util.Map;
+
+@Slf4j
+@Component
+public class ParameterExtractor {
+
+    private final ObjectMapper objectMapper;
+    private final SensitiveDataMasker sensitiveDataMasker;
+
+    public ParameterExtractor(ObjectMapper objectMapper) {
+        this.objectMapper = objectMapper;
+        this.sensitiveDataMasker = new SensitiveDataMasker();
+    }
+
+    public String extractParameters(ProceedingJoinPoint joinPoint) {
+        try {
+            MethodSignature signature = (MethodSignature) joinPoint.getSignature();
+            Parameter[] parameters = signature.getMethod().getParameters();
+            Object[] args = joinPoint.getArgs();
+
+            if (parameters.length == 0) {
+                return "{}";
+            }
+
+            Map<String, Object> paramMap = new LinkedHashMap<>();
+            for (int i = 0; i < parameters.length; i++) {
+                if (args[i] != null) {
+                    addParameter(paramMap, parameters[i], args[i]);
+                }
+            }
+
+            return objectMapper.writeValueAsString(paramMap);
+        } catch (Exception e) {
+            log.warn("파라미터 변환 실패: {}", e.getMessage());
+            return "{}";
+        }
+    }
+
+    private void addParameter(Map<String, Object> paramMap, Parameter parameter, Object value) throws JsonProcessingException {
+        String paramName = extractParamName(parameter);
+        paramMap.put(paramName, sensitiveDataMasker.maskSensitiveData(paramName, value, objectMapper));
+    }
+
+    private String extractParamName(Parameter parameter) {
+        PathVariable pathVariable = parameter.getAnnotation(PathVariable.class);
+        if (pathVariable != null && !pathVariable.value().isEmpty()) {
+            return pathVariable.value();
+        }
+
+        RequestParam requestParam = parameter.getAnnotation(RequestParam.class);
+        if (requestParam != null && !requestParam.value().isEmpty()) {
+            return requestParam.value();
+        }
+
+        return parameter.getName();
+    }
+}

src/main/java/com/somemore/global/aspect/log/extractor/RequestExtractor.java

@@ -0,0 +1,18 @@
+package com.somemore.global.aspect.log.extractor;
+
+import jakarta.servlet.http.HttpServletRequest;
+import org.springframework.stereotype.Component;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+@Component
+public class RequestExtractor {
+
+    public HttpServletRequest getCurrentRequest() {
+        ServletRequestAttributes attributes = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
+        if (attributes == null) {
+            throw new IllegalStateException("요청을 찾을수 없습니다.");
+        }
+        return attributes.getRequest();
+    }
+}

src/main/java/com/somemore/global/aspect/log/extractor/ResponseExtractor.java

@@ -0,0 +1,54 @@
+package com.somemore.global.aspect.log.extractor;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.somemore.global.common.response.LoggedResponse;
+import com.somemore.global.exception.DuplicateException;
+import com.somemore.global.exception.ImageUploadException;
+import com.somemore.global.exception.BadRequestException;
+import com.somemore.global.exception.NoSuchElementException;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Component;
+import org.springframework.web.bind.MethodArgumentNotValidException;
+
+@Slf4j
+@Component
+public class ResponseExtractor {
+
+    private final ObjectMapper objectMapper;
+
+    public ResponseExtractor(ObjectMapper objectMapper) {
+        this.objectMapper = objectMapper;
+    }
+
+    public LoggedResponse extractResponse(Object result) {
+        try {
+            if (result == null) {
+                return new LoggedResponse(HttpStatus.OK, "null");
+            }
+
+            if (result instanceof ResponseEntity<?> responseEntity) {
+                String body = objectMapper.writeValueAsString(responseEntity.getBody());
+                return new LoggedResponse(responseEntity.getStatusCode(), body);
+            }
+
+            return new LoggedResponse(HttpStatus.OK, objectMapper.writeValueAsString(result));
+        } catch (Exception e) {
+            log.warn("응답 변환 실패: {}", e.getMessage());
+            return new LoggedResponse(HttpStatus.OK, "[응답 변환 실패]");
+        }
+    }
+
+    public HttpStatus extractExceptionStatus(Exception e) {
+        if (e instanceof BadRequestException ||
+                e instanceof ImageUploadException ||
+                e instanceof DuplicateException ||
+                e instanceof MethodArgumentNotValidException) {
+            return HttpStatus.BAD_REQUEST;
+        } else if (e instanceof NoSuchElementException) {
+            return HttpStatus.NOT_FOUND;
+        }
+        return HttpStatus.INTERNAL_SERVER_ERROR;
+    }
+}

src/main/java/com/somemore/global/aspect/log/utils/SensitiveDataMasker.java

@@ -0,0 +1,72 @@
+package com.somemore.global.aspect.log.utils;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import lombok.RequiredArgsConstructor;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import java.util.*;
+
+@RequiredArgsConstructor
+@Slf4j
+@Component
+public class SensitiveDataMasker {
+
+    private final Set<String> sensitiveFields = new HashSet<>(Arrays.asList(
+            "password", "token", "secret", "credential", "authorization",
+            "accessToken", "refreshToken"
+    ));
+
+    public Object maskSensitiveData(String fieldName, Object value, ObjectMapper objectMapper) throws JsonProcessingException {
+        if (isSensitiveField(fieldName)) {
+            return "********";
+        } else if (value instanceof Map) {
+            return maskSensitiveDataInMap((Map<?, ?>) value);
+        } else if (isComplexObject(value)) {
+            String json = objectMapper.writeValueAsString(value);
+            json = maskSensitiveDataInJson(json, objectMapper);
+            return objectMapper.readValue(json, Object.class);
+        }
+        return value;
+    }
+
+    private boolean isSensitiveField(String fieldName) {
+        String lowercaseFieldName = fieldName.toLowerCase();
+        return sensitiveFields.stream()
+                .anyMatch(sensitive -> lowercaseFieldName.contains(sensitive.toLowerCase()));
+    }
+
+    private Map<String, Object> maskSensitiveDataInMap(Map<?, ?> map) {
+        Map<String, Object> maskedMap = new LinkedHashMap<>();
+
+        map.forEach((key, value) -> {
+            String keyStr = String.valueOf(key);
+            if (isSensitiveField(keyStr)) {
+                maskedMap.put(keyStr, "********");
+            } else if (value instanceof Map) {
+                maskedMap.put(keyStr, maskSensitiveDataInMap((Map<?, ?>) value));
+            } else {
+                maskedMap.put(keyStr, value);
+            }
+        });
+
+        return maskedMap;
+    }
+
+    private String maskSensitiveDataInJson(String json, ObjectMapper objectMapper) {
+        try {
+            Map<String, Object> jsonMap = objectMapper.readValue(json, Map.class);
+            Map<String, Object> maskedMap = maskSensitiveDataInMap(jsonMap);
+            return objectMapper.writeValueAsString(maskedMap);
+        } catch (Exception e) {
+            log.warn("JSON 마스킹 처리 실패: {}", e.getMessage());
+            return json;
+        }
+    }
+
+    private boolean isComplexObject(Object value) {
+        return !(value instanceof String || value instanceof Number ||
+                value instanceof Boolean || value instanceof Date);
+    }
+}