Refactor: WebSocketMessageController에서 인증된 Principal 정보를 사용하도록 수정

jueunk617 · jueunk617 · commit 71234e9e548a · 2025-10-10T10:22:03.000+09:00
diff --git a/src/main/java/com/back/global/websocket/controller/WebSocketMessageController.java b/src/main/java/com/back/global/websocket/controller/WebSocketMessageController.java
@@ -1,14 +1,16 @@
 package com.back.global.websocket.controller;
 
 import com.back.global.exception.CustomException;
-import com.back.global.websocket.dto.HeartbeatMessage;
+import java.security.Principal;
+import com.back.global.security.user.CustomUserDetails;
 import com.back.global.websocket.service.WebSocketSessionManager;
 import com.back.global.websocket.util.WebSocketErrorHelper;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.messaging.handler.annotation.MessageMapping;
 import org.springframework.messaging.handler.annotation.Payload;
 import org.springframework.messaging.simp.SimpMessageHeaderAccessor;
+import org.springframework.security.core.Authentication;
 import org.springframework.stereotype.Controller;
 
 @Slf4j
@@ -21,16 +23,18 @@ public class WebSocketMessageController {
 
     // Heartbeat 처리
     @MessageMapping("/heartbeat")
-    public void handleHeartbeat(@Payload HeartbeatMessage message,
+    public void handleHeartbeat(Principal principal,
                                 SimpMessageHeaderAccessor headerAccessor) {
         try {
-            if (message.userId() != null) {
-                // TTL 10분으로 연장
-                sessionManager.updateLastActivity(message.userId());
-                log.debug("Heartbeat 처리 완료 - 사용자: {}", message.userId());
+            // Principal에서 인증된 사용자 정보 추출
+            if (principal instanceof Authentication auth && auth.getPrincipal() instanceof CustomUserDetails userDetails) {
+                Long userId = userDetails.getUserId();
+
+                sessionManager.updateLastActivity(userId);
+                log.debug("Heartbeat 처리 완료 - 사용자: {}", userId);
             } else {
-                log.warn("유효하지 않은 Heartbeat 메시지 수신: userId가 null");
-                errorHelper.sendInvalidRequestError(headerAccessor.getSessionId(), "사용자 ID가 필요합니다");
+                log.warn("인증되지 않은 Heartbeat 요청: {}", headerAccessor.getSessionId());
+                errorHelper.sendUnauthorizedError(headerAccessor.getSessionId());
             }
         } catch (CustomException e) {
             log.error("Heartbeat 처리 실패: {}", e.getMessage());
@@ -43,12 +47,14 @@ public void handleHeartbeat(@Payload HeartbeatMessage message,
 
     // 사용자 활동 신호 처리
     @MessageMapping("/activity")
-    public void handleActivity(@Payload HeartbeatMessage message,
+    public void handleActivity(Principal principal,
                                SimpMessageHeaderAccessor headerAccessor) {
         try {
-            if (message.userId() != null) {
-                sessionManager.updateLastActivity(message.userId());
-                log.debug("사용자 활동 신호 처리 완료 - 사용자: {}", message.userId());
+            if (principal instanceof Authentication auth && auth.getPrincipal() instanceof CustomUserDetails userDetails) {
+                Long userId = userDetails.getUserId();
+
+                sessionManager.updateLastActivity(userId);
+                log.debug("사용자 활동 신호 처리 완료 - 사용자: {}", userId);
             } else {
                 log.warn("유효하지 않은 활동 신호: userId가 null");
                 errorHelper.sendInvalidRequestError(headerAccessor.getSessionId(), "사용자 ID가 필요합니다");
diff --git a/src/main/java/com/back/global/websocket/dto/HeartbeatMessage.java b/src/main/java/com/back/global/websocket/dto/HeartbeatMessage.java
diff --git a/src/test/java/com/back/global/websocket/controller/WebSocketMessageControllerTest.java b/src/test/java/com/back/global/websocket/controller/WebSocketMessageControllerTest.java
@@ -2,7 +2,7 @@
 
 import com.back.global.exception.CustomException;
 import com.back.global.exception.ErrorCode;
-import com.back.global.websocket.dto.HeartbeatMessage;
+import com.back.global.security.user.CustomUserDetails;
 import com.back.global.websocket.service.WebSocketSessionManager;
 import com.back.global.websocket.util.WebSocketErrorHelper;
 import org.junit.jupiter.api.BeforeEach;
@@ -14,6 +14,9 @@
 import org.mockito.Mock;
 import org.mockito.junit.jupiter.MockitoExtension;
 import org.springframework.messaging.simp.SimpMessageHeaderAccessor;
+import org.springframework.security.authentication.UsernamePasswordAuthenticationToken;
+
+import java.security.Principal;
 
 import static org.mockito.ArgumentMatchers.*;
 import static org.mockito.Mockito.*;
@@ -33,64 +36,68 @@ class WebSocketMessageControllerTest {
 
     private SimpMessageHeaderAccessor headerAccessor;
     private Long userId;
-    private Long roomId;
     private String sessionId;
 
     @BeforeEach
     void setUp() {
         userId = 10L;
-        roomId = 1L;
         sessionId = "test-session-id";
 
         headerAccessor = mock(SimpMessageHeaderAccessor.class);
         lenient().when(headerAccessor.getSessionId()).thenReturn(sessionId);
     }
 
+    // 테스트용 Mock Principal 객체를 생성하는 헬퍼 메소드
+    private Principal createMockPrincipal(Long userId) {
+        CustomUserDetails mockUserDetails = mock(CustomUserDetails.class);
+        when(mockUserDetails.getUserId()).thenReturn(userId);
+
+        return new UsernamePasswordAuthenticationToken(mockUserDetails, null, null);
+    }
+
     @Nested
     @DisplayName("Heartbeat 처리")
     class HandleHeartbeatTest {
 
         @Test
-        @DisplayName("정상 - Heartbeat 처리")
+        @DisplayName("성공 - 인증된 사용자의 Heartbeat 처리")
         void t1() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             doNothing().when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleHeartbeat(message, headerAccessor);
+            controller.handleHeartbeat(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
-            verify(errorHelper, never()).sendInvalidRequestError(anyString(), anyString());
-            verify(errorHelper, never()).sendCustomExceptionToUser(anyString(), any());
-            verify(errorHelper, never()).sendGenericErrorToUser(anyString(), any(), anyString());
+            verifyNoInteractions(errorHelper);
         }
 
         @Test
-        @DisplayName("실패 - userId가 null")
+        @DisplayName("실패 - 인증 정보가 없는 경우")
         void t2() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(null);
+            Principal principal = null;
 
             // when
-            controller.handleHeartbeat(message, headerAccessor);
+            controller.handleHeartbeat(principal, headerAccessor);
 
             // then
             verify(sessionManager, never()).updateLastActivity(any());
-            verify(errorHelper).sendInvalidRequestError(sessionId, "사용자 ID가 필요합니다");
+            verify(errorHelper).sendUnauthorizedError(sessionId);
         }
 
         @Test
         @DisplayName("실패 - CustomException 발생")
         void t3() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             CustomException exception = new CustomException(ErrorCode.BAD_REQUEST);
             doThrow(exception).when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleHeartbeat(message, headerAccessor);
+            controller.handleHeartbeat(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
@@ -101,12 +108,12 @@ void t3() {
         @DisplayName("실패 - 일반 Exception 발생")
         void t4() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             RuntimeException exception = new RuntimeException("예상치 못한 오류");
             doThrow(exception).when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleHeartbeat(message, headerAccessor);
+            controller.handleHeartbeat(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
@@ -123,46 +130,46 @@ void t4() {
     class HandleActivityTest {
 
         @Test
-        @DisplayName("정상 - 활동 신호 처리")
-        void t13() {
+        @DisplayName("성공 - 인증된 사용자의 활동 신호 처리")
+        void t1() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             doNothing().when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleActivity(message, headerAccessor);
+            controller.handleActivity(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
-            verify(errorHelper, never()).sendInvalidRequestError(anyString(), anyString());
-            verify(errorHelper, never()).sendCustomExceptionToUser(anyString(), any());
-            verify(errorHelper, never()).sendGenericErrorToUser(anyString(), any(), anyString());
+            verifyNoInteractions(errorHelper);
         }
 
         @Test
-        @DisplayName("실패 - userId가 null")
-        void t14() {
+        @DisplayName("실패 - 인증 정보가 없는 경우")
+        void t2() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(null);
+            Principal principal = null;
 
             // when
-            controller.handleActivity(message, headerAccessor);
+            controller.handleActivity(principal, headerAccessor);
 
             // then
             verify(sessionManager, never()).updateLastActivity(any());
+
+            // handleActivity의 else 블록에 맞춰 검증 로직 수정
             verify(errorHelper).sendInvalidRequestError(sessionId, "사용자 ID가 필요합니다");
         }
 
         @Test
         @DisplayName("실패 - CustomException 발생")
-        void t15() {
+        void t3() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             CustomException exception = new CustomException(ErrorCode.BAD_REQUEST);
             doThrow(exception).when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleActivity(message, headerAccessor);
+            controller.handleActivity(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
@@ -171,14 +178,14 @@ void t15() {
 
         @Test
         @DisplayName("실패 - 일반 Exception 발생")
-        void t16() {
+        void t4() {
             // given
-            HeartbeatMessage message = new HeartbeatMessage(userId);
+            Principal mockPrincipal = createMockPrincipal(userId);
             RuntimeException exception = new RuntimeException("예상치 못한 오류");
             doThrow(exception).when(sessionManager).updateLastActivity(userId);
 
             // when
-            controller.handleActivity(message, headerAccessor);
+            controller.handleActivity(mockPrincipal, headerAccessor);
 
             // then
             verify(sessionManager).updateLastActivity(userId);
