Feate: 인증/인가 실패 공통 핸들러 구현

joyewon0705 · joyewon0705 · commit a9981a98c041 · 2025-09-23T12:45:24.000+09:00
diff --git a/src/main/java/com/back/global/security/JwtAccessDeniedHandler.java b/src/main/java/com/back/global/security/JwtAccessDeniedHandler.java
@@ -0,0 +1,37 @@
+package com.back.global.security;
+
+import com.back.global.common.dto.RsData;
+import com.back.global.exception.ErrorCode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.security.access.AccessDeniedException;
+import org.springframework.security.web.access.AccessDeniedHandler;
+import org.springframework.stereotype.Component;
+
+import java.io.IOException;
+
+/**
+ * 인가 실패(403 Forbidden) 처리 클래스
+ * - 인증은 되었으나, 권한(Role)이 부족한 경우
+ * - Json 형태로 에러 응답을 반환
+ */
+@Component
+public class JwtAccessDeniedHandler implements AccessDeniedHandler {
+    private final ObjectMapper objectMapper = new ObjectMapper();
+
+    @Override
+    public void handle(
+            HttpServletRequest request,
+            HttpServletResponse response,
+            AccessDeniedException accessDeniedException
+    ) throws IOException {
+
+        response.setContentType("application/json;charset=UTF-8");
+        response.setStatus(HttpServletResponse.SC_FORBIDDEN);
+
+        RsData<Void> body = RsData.fail(ErrorCode.ACCESS_DENIED);
+
+        response.getWriter().write(objectMapper.writeValueAsString(body));
+    }
+}
diff --git a/src/main/java/com/back/global/security/JwtAuthenticationEntryPoint.java b/src/main/java/com/back/global/security/JwtAuthenticationEntryPoint.java
@@ -0,0 +1,38 @@
+package com.back.global.security;
+
+import com.back.global.common.dto.RsData;
+import com.back.global.exception.ErrorCode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import org.springframework.security.core.AuthenticationException;
+import org.springframework.security.web.AuthenticationEntryPoint;
+import org.springframework.stereotype.Component;
+
+import java.io.IOException;
+
+/**
+ * 인증 실패(401 Unauthorized) 처리 클래스
+ * - JwtAuthenticationFilter에서 토큰이 없거나 잘못된 경우
+ * - 인증되지 않은 사용자가 보호된 API에 접근하려는 경우
+ * - Json 형태로 에러 응답을 반환
+ */
+@Component
+public class JwtAuthenticationEntryPoint implements AuthenticationEntryPoint {
+    private final ObjectMapper objectMapper = new ObjectMapper();
+
+    @Override
+    public void commence(
+            HttpServletRequest request,
+            HttpServletResponse response,
+            AuthenticationException authException
+    ) throws IOException {
+
+        response.setContentType("application/json;charset=UTF-8");
+        response.setStatus(HttpServletResponse.SC_UNAUTHORIZED);
+
+        RsData<Void> body = RsData.fail(ErrorCode.UNAUTHORIZED);
+
+        response.getWriter().write(objectMapper.writeValueAsString(body));
+    }
+}
