[Feat]: 게시글, 댓글 조회 모두 허용, 투표 게스트는 안되게 설정

Author: shihan00321

back/src/main/java/com/back/domain/comment/controller/CommentController.java

@@ -60,7 +60,9 @@ public ResponseEntity<PageResponse<CommentResponse>> getPosts(
                 sort
         );
 
-        Page<CommentResponse> responses = commentService.getComments(cs.getUser().getId(), postId, sortedPageable);
+        Long userId = (cs != null && cs.getUser() != null) ? cs.getUser().getId() : null;
+
+        Page<CommentResponse> responses = commentService.getComments(userId, postId, sortedPageable);
         return ResponseEntity.ok(PageResponse.of(responses));
     }
 

back/src/main/java/com/back/domain/comment/service/CommentService.java

@@ -19,6 +19,7 @@
 import org.springframework.stereotype.Service;
 import org.springframework.transaction.annotation.Transactional;
 
+import java.util.Collections;
 import java.util.Set;
 import java.util.stream.Collectors;
 
@@ -47,12 +48,17 @@ public CommentResponse createComment(Long userId, Long postId, CommentRequest re
     }
 
     public Page<CommentResponse> getComments(Long userId, Long postId, Pageable pageable) {
-        User user = userRepository.findById(userId)
-                .orElse(null);
+        User user = userId != null
+                ? userRepository.findById(userId).orElse(null)
+                : null;
+
         Post post = postRepository.findById(postId)
                 .orElseThrow(() -> new ApiException(ErrorCode.POST_NOT_FOUND));
         Page<Comment> commentsPage = commentRepository.findCommentsByPostId(postId, pageable);
-        Set<Long> userLikedComments = getUserLikedComments(userId, commentsPage);
+
+        Set<Long> userLikedComments = userId != null
+                ? getUserLikedComments(userId, commentsPage)
+                : Collections.emptySet();
 
         return commentsPage.map(comment -> CommentMappers.toCommentResponse(
                 comment,

back/src/main/java/com/back/domain/post/controller/PostController.java

@@ -52,7 +52,8 @@ public ResponseEntity<PageResponse<PostSummaryResponse>> getPosts(
             @Parameter(description = "검색 조건") @ModelAttribute PostSearchCondition condition,
             @Parameter(description = "페이지 정보") Pageable pageable,
             @AuthenticationPrincipal CustomUserDetails cs) {
-        Page<PostSummaryResponse> responses = postService.getPosts(cs.getUser().getId(), condition, pageable);
+        Long userId = (cs != null && cs.getUser() != null) ? cs.getUser().getId() : null;
+        Page<PostSummaryResponse> responses = postService.getPosts(userId, condition, pageable);
         return ResponseEntity.ok(PageResponse.of(responses));
     }
 
@@ -62,7 +63,8 @@ public ResponseEntity<PageResponse<PostSummaryResponse>> getPosts(
     public ResponseEntity<PostDetailResponse> getPost(
             @Parameter(description = "조회할 게시글 ID", required = true) @PathVariable Long postId,
             @AuthenticationPrincipal CustomUserDetails cs) {
-        return ResponseEntity.ok(postService.getPost(cs.getUser().getId(), postId));
+        Long userId = (cs != null && cs.getUser() != null) ? cs.getUser().getId() : null;
+        return ResponseEntity.ok(postService.getPost(userId, postId));
     }
 
     @PutMapping("/{postId}")

back/src/main/java/com/back/domain/post/mapper/PostMappers.java

@@ -58,7 +58,6 @@ public PostDetailResponse toDetailResponse(Post post, Boolean isLiked) {
     }
 
     public PostSummaryResponse toSummaryResponse(Post post, Boolean isLiked) {
-        log.info("투표 내용 {}", post.getVoteContent());
         return new PostSummaryResponse(
                 post.getId(),
                 post.getTitle(),

back/src/main/java/com/back/domain/post/service/PostService.java

@@ -56,7 +56,8 @@ public PostDetailResponse getPost(Long userId, Long postId) {
         Post post = postRepository.findById(postId)
                 .orElseThrow(() -> new ApiException(ErrorCode.POST_NOT_FOUND));
 
-        boolean isLiked = postLikeRepository.existsByPostIdAndUserId(postId, userId);
+        boolean isLiked = userId != null &&
+                postLikeRepository.existsByPostIdAndUserId(postId, userId);
 
         if (post.getCategory() == PostCategory.CHAT) {
             return postMappers.toDetailResponse(post, isLiked);
@@ -65,9 +66,11 @@ public PostDetailResponse getPost(Long userId, Long postId) {
         List<PollOptionResponse.VoteOption> options =
                 pollConverter.fromPollOptionJson(post.getVoteContent()).options();
 
-        List<Integer> selected = pollVoteRepository.findByPostIdAndUserId(postId, userId)
+        List<Integer> selected = userId != null
+                ? pollVoteRepository.findByPostIdAndUserId(postId, userId)
                 .map(vote -> pollConverter.fromChoiceJson(vote.getChoiceJson()))
-                .orElse(Collections.emptyList());
+                .orElse(Collections.emptyList())
+                : Collections.emptyList();
 
         PollOptionResponse pollResponse = new PollOptionResponse(selected, options);
 
@@ -77,7 +80,9 @@ public PostDetailResponse getPost(Long userId, Long postId) {
     public Page<PostSummaryResponse> getPosts(Long userId, PostSearchCondition condition, Pageable pageable) {
         Page<Post> posts = postRepository.searchPosts(condition, pageable);
 
-        Set<Long> likedPostIds = getUserLikedPostIds(userId, posts);
+        Set<Long> likedPostIds = userId != null
+                ? getUserLikedPostIds(userId, posts)
+                : Collections.emptySet();
 
         return posts.map(post -> postMappers.toSummaryResponse(
                 post,

back/src/main/java/com/back/global/security/SecurityConfig.java

@@ -6,6 +6,7 @@
 import lombok.RequiredArgsConstructor;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpMethod;
 import org.springframework.http.HttpStatus;
 import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.config.Customizer;
@@ -53,6 +54,9 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 .authorizeHttpRequests(auth -> auth
                         .requestMatchers("/h2-console/**").permitAll()
                         .requestMatchers("/api/v1/users-auth/**", "/oauth2/**", "/login/oauth2/**").permitAll()
+                        .requestMatchers(HttpMethod.GET, "/api/v1/posts", "/api/v1/posts/**").permitAll()
+                        .requestMatchers(HttpMethod.GET, "/api/v1/posts/*/comments").permitAll()
+                        .requestMatchers("/api/v1/posts/*/polls").hasAnyRole("USER", "ADMIN")
                         .requestMatchers("/admin/**").hasRole("ADMIN")
                         .requestMatchers("/actuator/**").permitAll()
                         .anyRequest().authenticated()