[Feat]: AWS 인프라 구축 및 도메인 설정

### 인프라 (Terraform)
- AWS 리소스 구성 (VPC, EC2, RDS, ECR)
- Auto Scaling Group 설정 (t3.micro × 1)
- RDS MySQL 설정 (db.t3.micro)
- Security Group 구성 (HTTP/HTTPS/SSH 허용)

### 도메인 및 SSL
- Route 53 DNS 설정 (api.bid-market.shop)
- Let's Encrypt SSL 인증서 적용
- Nginx 리버스 프록시 설정

### 애플리케이션 설정
- MySQL JDBC 드라이버 추가
- application-prod.yml 환경 변수 설정
- CORS 도메인 추가 (bid-market.shop)
- Docker Compose Redis 추가

### 참고
- Elastic IP: 15.165.154.40
- API 엔드포인트: https://api.bid-market.shop

Author: Jiwoo-Seo

.gitignore

@@ -41,7 +41,23 @@ db_dev.mv.db
 db_dev.trace.db
 src/main/generated/
 k6-tests/results
+*.pem
+*.key
 
 ### env ###
 .env
-*.env
+*.env
+### Terraform ###
+**/.terraform/*
+*.tfstate
+*.tfstate.*
+crash.log
+crash.*.log
+*.tfvars
+!terraform.tfvars.example
+override.tf
+override.tf.json
+*_override.tf
+*_override.tf.json
+.terraformrc
+terraform.rc

Dockerfile

@@ -0,0 +1,44 @@
+# Build stage
+FROM gradle:8.5-jdk21 AS builder
+
+WORKDIR /app
+
+# Copy Gradle files
+COPY build.gradle.kts settings.gradle.kts ./
+COPY gradle gradle
+
+# Download dependencies
+RUN gradle dependencies --no-daemon || true
+
+# Copy source code
+COPY src ./src
+
+# Build application
+RUN gradle clean build -x test --no-daemon
+
+# Runtime stage
+FROM eclipse-temurin:21-jre-alpine
+
+WORKDIR /app
+
+# Add non-root user
+RUN addgroup -S spring && adduser -S spring -G spring
+USER spring:spring
+
+# Copy built jar from builder
+COPY --from=builder /app/build/libs/*.jar app.jar
+
+# Expose port
+EXPOSE 8080
+
+# Health check
+HEALTHCHECK --interval=30s --timeout=3s --start-period=40s --retries=3 \
+  CMD wget --no-verbose --tries=1 --spider http://localhost:8080/actuator/health || exit 1
+
+# Run application
+ENTRYPOINT ["java", \
+  "-XX:+UseContainerSupport", \
+  "-XX:MaxRAMPercentage=75.0", \
+  "-Djava.security.egd=file:/dev/./urandom", \
+  "-jar", \
+  "app.jar"]

README.md

@@ -1,2 +1,3 @@
 # WEB6_8_Bid_BE
-프로그래머스 6기 8회차 최종 프로젝트 12팀(Bid)
+
+프로그래머스 6기 8회차 최종 프로젝트 12팀(Bid) - 백엔드

build.gradle.kts

@@ -48,6 +48,7 @@ dependencies {
 
     // DB
     runtimeOnly("com.h2database:h2")
+    runtimeOnly("com.mysql:mysql-connector-j")
 
     // QueryDSL
     implementation("io.github.openfeign.querydsl:querydsl-jpa:7.0")

src/main/java/com/backend/global/security/SecurityConfig.java

@@ -66,7 +66,13 @@ public UrlBasedCorsConfigurationSource corsConfigurationSource() {
         CorsConfiguration configuration = new CorsConfiguration();
 
         // 허용할 오리진 설정
-        configuration.setAllowedOrigins(List.of("https://cdpn.io", "http://localhost:3000"));
+        configuration.setAllowedOrigins(List.of(
+                "https://cdpn.io",
+                "http://localhost:3000",
+                "https://bid-market.shop",
+                "https://www.bid-market.shop",
+                "https://api.bid-market.shop"
+        ));
         configuration.setAllowedMethods(List.of("GET", "POST", "PUT", "PATCH", "DELETE"));
 
         // 자격 증명 허용 설정

src/main/resources/application-prod.yml

@@ -1,14 +1,34 @@
 spring:
   datasource:
-    url: jdbc:h2:mem:db_test;MODE=MySQL
-    username: sa
-    password:
-    driver-class-name: org.h2.Driver
+    url: jdbc:mysql://${DB_HOST}:3306/${DB_NAME}?useSSL=false&allowPublicKeyRetrieval=true&serverTimezone=Asia/Seoul
+    username: ${DB_USERNAME}
+    password: ${DB_PASSWORD}
+    driver-class-name: com.mysql.cj.jdbc.Driver
+
+  jpa:
+    hibernate:
+      ddl-auto: validate
+    properties:
+      hibernate:
+        dialect: org.hibernate.dialect.MySQL8Dialect
+
+  data:
+    redis:
+      host: ${REDIS_HOST:localhost}
+      port: ${REDIS_PORT:6379}
+
+jwt:
+  secret: ${JWT_SECRET}
+  access_token_expiration_minutes: ${JWT_ACCESS_TOKEN_EXPIRATION:30}
+  refresh_token_expiration_days: ${JWT_REFRESH_TOKEN_EXPIRATION:7}
 
 file:
   upload:
     path: ${user.home}/uploads
-    base-url: ${BACKEND_BASE_URL}/uploads
+    base-url: https://api.bid-market.shop/uploads
 testdata:
   generation:
-    enabled: false
+    enabled: false
+
+server:
+  port: 8080

terraform/environments/dev/.terraform.lock.hcl

@@ -0,0 +1,28 @@
+# 로컬 변수 정의 - 리소스 네이밍을 일관되게 관리
+locals {
+  team_prefix = "team12"
+  env         = var.environment
+  
+  # 네이밍 규칙: team12-{resource-type}-{number}
+  vpc_name              = "${local.team_prefix}-vpc-1"
+  igw_name              = "${local.team_prefix}-igw-1"
+  public_subnet_prefix  = "${local.team_prefix}-public-subnet"
+  private_subnet_prefix = "${local.team_prefix}-private-subnet"
+  alb_sg_name          = "${local.team_prefix}-alb-sg-1"
+  ec2_sg_name          = "${local.team_prefix}-ec2-sg-1"
+  rds_sg_name          = "${local.team_prefix}-rds-sg-1"
+  alb_name             = "${local.team_prefix}-alb-1"
+  target_group_name    = "${local.team_prefix}-tg-1"
+  launch_template_name = "${local.team_prefix}-lt-1"
+  asg_name             = "${local.team_prefix}-asg-1"
+  rds_name             = "${local.team_prefix}-rds-1"
+  ecr_name             = "${local.team_prefix}-ecr-1"
+  
+  # 공통 태그
+  common_tags = {
+    Team        = "team12"
+    Environment = var.environment
+    Project     = "auction-app"
+    ManagedBy   = "terraform"
+  }
+}