[feat/OPS-329] Sentry를 통한 모니터링 환경 구축. (#86)

* feat/OPS-329 : Sentry를 통한 모니터링 환경 구축.

* feat/OPS-329: 추가로 프론트 요구 사항 반영.

Author: Kimgooner

.github/workflows/test-server-ci.yml

@@ -20,6 +20,8 @@ jobs:
   # ==================================
   ci:
     runs-on: ubuntu-latest
+    env:
+      SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
 
     steps:
       # 1. 소스 코드 체크아웃

build.gradle

@@ -2,6 +2,7 @@ plugins {
     id 'java'
     id 'org.springframework.boot' version '3.5.5'
     id 'io.spring.dependency-management' version '1.1.7'
+    id "io.sentry.jvm.gradle" version "5.12.0"
 }
 
 group = 'org.tuna.zoopzoop'
@@ -97,7 +98,10 @@ dependencies {
 
     // Playwright for Java
     implementation 'com.microsoft.playwright:playwright:1.54.0'
-
+    
+    // Sentry (모니터링 용)
+    implementation 'io.sentry:sentry-spring-boot-starter-jakarta:8.22.0'
+    
     // Apache Commons Codec
     implementation"commons-codec:commons-codec:1.19.0"
 }
@@ -111,3 +115,14 @@ dependencyManagement {
 tasks.named('test') {
     useJUnitPlatform()
 }
+
+sentry {
+    // Generates a JVM (Java, Kotlin, etc.) source bundle and uploads your source code to Sentry.
+    // This enables source context, allowing you to see your source
+    // code as part of your stack traces in Sentry.
+    includeSourceContext = true
+
+    org = "whitedoggy"
+    projectName = "zoopzoop-backend"
+    authToken = System.getenv("SENTRY_AUTH_TOKEN")
+}

src/main/java/org/tuna/zoopzoop/backend/domain/auth/repository/RefreshTokenRepository.java

@@ -5,10 +5,12 @@
 import org.tuna.zoopzoop.backend.domain.auth.entity.RefreshToken;
 import org.tuna.zoopzoop.backend.domain.member.entity.Member;
 
+import java.util.List;
 import java.util.Optional;
 
 @Repository
 public interface RefreshTokenRepository extends JpaRepository<RefreshToken, Integer> {
     Optional<RefreshToken> findBySessionId(String sessionId);
     Optional<RefreshToken> findByMember(Member member);
+    List<RefreshToken> findAllByMember(Member member);
 }

src/main/java/org/tuna/zoopzoop/backend/domain/auth/service/RefreshTokenService.java

@@ -11,6 +11,7 @@
 import java.time.LocalDateTime;
 import java.time.ZoneId;
 import java.util.Date;
+import java.util.List;
 import java.util.UUID;
 
 @Service
@@ -51,4 +52,11 @@ public void deleteBySessionId(String sessionId) {
         refreshTokenRepository.findBySessionId(sessionId)
                 .orElseThrow(() -> new BadCredentialsException("잘못된 요청입니다."));
     }
+
+    public void deleteByMember(Member member) {
+        List<RefreshToken> tokens = refreshTokenRepository.findAllByMember(member);
+        if (!tokens.isEmpty()) {
+            refreshTokenRepository.deleteAll(tokens);
+        }
+    }
 }

src/main/java/org/tuna/zoopzoop/backend/domain/member/controller/ApiV1MemberController.java

@@ -8,6 +8,7 @@
 import org.springframework.http.ResponseEntity;
 import org.springframework.security.core.annotation.AuthenticationPrincipal;
 import org.springframework.web.bind.annotation.*;
+import org.tuna.zoopzoop.backend.domain.auth.service.RefreshTokenService;
 import org.tuna.zoopzoop.backend.domain.member.dto.req.ReqBodyForEditMember;
 import org.tuna.zoopzoop.backend.domain.member.dto.req.ReqBodyForEditMemberName;
 import org.tuna.zoopzoop.backend.domain.member.dto.req.ReqBodyForEditMemberProfileImage;
@@ -25,6 +26,7 @@
 @Tag(name = "ApiV1MemberController", description = "사용자 REST API 컨트롤러")
 public class ApiV1MemberController {
     private final MemberService memberService;
+    private final RefreshTokenService refreshTokenService;
     /// api/v1/member/me : 사용자 정보 조회 (GET)
     /// api/v1/member/edit : 사용자 닉네임 수정 (PUT)
     /// api/v1/member : 사용자 탈퇴 (DELETE)
@@ -145,6 +147,7 @@ public ResponseEntity<RsData<Void>> deleteMember(
             @AuthenticationPrincipal CustomUserDetails userDetails
     ) {
         Member member = userDetails.getMember();
+        refreshTokenService.deleteByMember(member);
         memberService.hardDeleteMember(member);
         return ResponseEntity
                 .status(HttpStatus.OK)

src/main/java/org/tuna/zoopzoop/backend/global/config/sentry/SentryConfig.java

@@ -0,0 +1,20 @@
+package org.tuna.zoopzoop.backend.global.config.sentry;
+
+import io.sentry.SentryOptions;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+
+@Configuration
+public class SentryConfig {
+
+    @Bean
+    public SentryOptions.BeforeSendCallback beforeSend() {
+        return (event, hint) -> {
+            if(event.getMessage() != null
+                    && event.getMessage().getFormatted().contains("JWT 토큰")) {
+                return null;
+            }
+            return event;
+        };
+    }
+}

src/main/java/org/tuna/zoopzoop/backend/global/exception/GlobalExceptionHandler.java

@@ -3,15 +3,14 @@
 import com.fasterxml.jackson.databind.JsonMappingException;
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.fasterxml.jackson.databind.exc.InvalidFormatException;
+import io.sentry.Sentry;
 import jakarta.persistence.NoResultException;
 import jakarta.validation.ConstraintViolationException;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.dao.DataIntegrityViolationException;
-import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.http.converter.HttpMessageNotReadableException;
-import org.springframework.validation.FieldError;
 import org.springframework.web.bind.MethodArgumentNotValidException;
 import org.springframework.web.bind.annotation.ControllerAdvice;
 import org.springframework.web.bind.annotation.ExceptionHandler;
@@ -34,6 +33,7 @@ public class GlobalExceptionHandler {
 
     @ExceptionHandler(NoResultException.class) // 자료를 찾지 못했을 경우.
     public ResponseEntity<RsData<Void>> handleNoResultException(NoResultException e) {
+        Sentry.captureException(e);
         return new ResponseEntity<>(
                 new RsData<>(
                         "404",

src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java

@@ -46,7 +46,6 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                                 "/actuator/health", // health 체크용
                                 "/dev/**" // ← 추가: dev 토큰 발급은 누구나 접근
                         ).permitAll()
-                        .anyRequest().authenticated()
                 )
                 .oauth2Login(oauth2 -> oauth2
                         .authorizationEndpoint(authorization -> authorization

src/main/java/org/tuna/zoopzoop/backend/global/security/jwt/JwtAuthenticationFilter.java

@@ -25,10 +25,21 @@ public class JwtAuthenticationFilter extends OncePerRequestFilter {
     private final JwtUtil jwtUtil;
     private final CustomUserDetailsService userDetailsService;
 
+    // 필터를 적용할 URL 패턴
+    private static final String API_PREFIX = "/api/v1";
+
     @Override
     protected void doFilterInternal(HttpServletRequest request,
                                     HttpServletResponse response,
                                     FilterChain filterChain) throws ServletException, IOException {
+        String path = request.getRequestURI();
+
+        // /api/ 로 시작하지 않으면 JWT 검증 건너뜀
+        if (!path.startsWith(API_PREFIX)) {
+            filterChain.doFilter(request, response);
+            return;
+        }
+
         String token = getTokenFromRequest(request); // Authorization 헤더에서 JWT 토큰 추출
         log.info("[JwtFilter] Token from request: {}", token);
         log.info("[JwtFilter] Token valid? {}", jwtUtil.validateToken(token));

src/main/java/org/tuna/zoopzoop/backend/global/security/jwt/JwtUtil.java

@@ -86,15 +86,15 @@ public boolean validateToken(String token) {
                     .parseSignedClaims(token);
             return true;
         } catch (ExpiredJwtException e) {
-            log.error("JWT 토큰이 만료되었습니다: {}", e.getMessage());
+            log.info("JWT 토큰이 만료되었습니다: {}", e.getMessage());
         } catch (UnsupportedJwtException e) {
-            log.error("지원되지 않는 JWT 토큰입니다: {}", e.getMessage());
+            log.info("지원되지 않는 JWT 토큰입니다: {}", e.getMessage());
         } catch (MalformedJwtException e) {
-            log.error("잘못된 JWT 토큰입니다: {}", e.getMessage());
+            log.info("잘못된 JWT 토큰입니다: {}", e.getMessage());
         } catch (SecurityException e) {
-            log.error("JWT 서명이 잘못되었습니다: {}", e.getMessage());
+            log.info("JWT 서명이 잘못되었습니다: {}", e.getMessage());
         } catch (IllegalArgumentException e) {
-            log.error("JWT 토큰이 비어있습니다: {}", e.getMessage());
+            log.info("JWT 토큰이 비어있습니다: {}", e.getMessage());
         }
         return false;
     }