prgrms-web-devcourse-final-project
diff --git a/‎backend/build.gradle.kts‎
Lines changed: 7 additions & 0 deletions b/‎backend/build.gradle.kts‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎backend/src/main/java/com/back/BackendApplication.java‎
Lines changed: 2 additions & 0 deletions b/‎backend/src/main/java/com/back/BackendApplication.java‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎backend/src/main/java/com/back/api/preregister/controller/PreRegisterApi.java‎
Lines changed: 7 additions & 24 deletions b/‎backend/src/main/java/com/back/api/preregister/controller/PreRegisterApi.java‎
Lines changed: 7 additions & 24 deletions
diff --git a/‎backend/src/main/java/com/back/api/preregister/controller/PreRegisterController.java‎
Lines changed: 11 additions & 2 deletions b/‎backend/src/main/java/com/back/api/preregister/controller/PreRegisterController.java‎
Lines changed: 11 additions & 2 deletions
diff --git a/‎backend/src/main/java/com/back/api/preregister/service/PreRegisterService.java‎
Lines changed: 88 additions & 44 deletions b/‎backend/src/main/java/com/back/api/preregister/service/PreRegisterService.java‎
Lines changed: 88 additions & 44 deletions
diff --git a/‎backend/src/main/java/com/back/global/config/Bucket4jConfig.java‎
Lines changed: 95 additions & 0 deletions b/‎backend/src/main/java/com/back/global/config/Bucket4jConfig.java‎
Lines changed: 95 additions & 0 deletions
@@ -93,6 +93,13 @@ dependencies {
 
     // resilience4j
     implementation("org.springframework.cloud:spring-cloud-starter-circuitbreaker-resilience4j")
+
+    // Bucket4j (Rate Limiting)
+    implementation("com.bucket4j:bucket4j-core:8.10.1")
+    implementation("com.bucket4j:bucket4j-redis:8.10.1")
+
+    // Apache Commons Net (IP 대역 매칭)
+    implementation("commons-net:commons-net:3.11.1")
 }
 
 tasks.withType<Test> {
 
@@ -2,7 +2,9 @@
 
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.scheduling.annotation.EnableScheduling;
 
+@EnableScheduling
 @SpringBootApplication
 public class BackendApplication {
 
 
@@ -20,31 +20,11 @@
 @Tag(name = "PreRegister API", description = "사전등록 API")
 public interface PreRegisterApi {
 
-	// 인증 있는 사전 등록 -> v2에서 사용 예정
-	// @Operation(
-	// 	summary = "사전등록",
-	// 	description = "이벤트에 사전등록합니다. 휴대폰 번호, 생년월일을 통한 본인 인증이 필요하며, 약관 동의가 필수입니다. 이름은 JWT 토큰으로 인증된 사용자 정보에서 자동으로 가져옵니다.",
-	// 	security = @SecurityRequirement(name = "bearerAuth")
-	// )
-	// @ApiErrorCode({
-	// 	"NOT_FOUND_EVENT",
-	// 	"NOT_FOUND_USER",
-	// 	"ALREADY_PRE_REGISTERED",
-	// 	"INVALID_PRE_REGISTRATION_PERIOD",
-	// 	"INVALID_USER_INFO",
-	// 	"TERMS_NOT_AGREED",
-	// 	"PRIVACY_NOT_AGREED",
-	// 	"UNAUTHORIZED"
-	// })
-	// ApiResponse<PreRegisterResponse> register(
-	// 	@Parameter(description = "이벤트 ID", example = "1")
-	// 	@PathVariable Long eventId,
-	// 	@Valid @RequestBody PreRegisterCreateRequest request
-	// );
-
 	@Operation(
 		summary = "사전등록",
-		description = "이벤트에 사전등록합니다. (인증 제외). reCAPTCHA v3 토큰을 헤더(X-Recaptcha-Token)로 전달해야 합니다.",
+		description = "이벤트 사전등록 API입니다. 휴대폰 번호와 생년월일을 통한 본인 인증 및 "
+			+ "약관 동의가 필요합니다. reCAPTCHA v3 토큰은 "
+			+ "헤더(X-Recaptcha-Token)로 전달해야 합니다.",
 		security = @SecurityRequirement(name = "bearerAuth")
 	)
 	@ApiErrorCode({
@@ -65,7 +45,10 @@ ApiResponse<PreRegisterResponse> register(
 		@PathVariable Long eventId,
 		@Parameter(description = "reCAPTCHA v3 토큰", example = "03AGdBq24...")
 		@RequestHeader(value = "X-Recaptcha-Token", required = false) String recaptchaToken,
-		@Valid @RequestBody PreRegisterCreateRequest request
+		@Parameter(description = "디바이스 ID (Fingerprint)", example = "abcdef1234567890")
+		@RequestHeader(value = "X-Device-Id", required = false) String deviceId,
+		@Valid @RequestBody PreRegisterCreateRequest request,
+		jakarta.servlet.http.HttpServletRequest httpRequest
 	);
 
 	@Operation(
 
@@ -35,10 +35,19 @@ public class PreRegisterController implements PreRegisterApi {
 	public ApiResponse<PreRegisterResponse> register(
 		@PathVariable Long eventId,
 		@RequestHeader(value = "X-Recaptcha-Token", required = false) String recaptchaToken,
-		@Valid @RequestBody PreRegisterCreateRequest request) {
+		@RequestHeader(value = "X-Device-Id", required = false) String deviceId,
+		@Valid @RequestBody PreRegisterCreateRequest request,
+		jakarta.servlet.http.HttpServletRequest httpRequest) {
 		reCaptchaService.verifyToken(recaptchaToken, null);
 		Long userId = httpRequestContext.getUserId();
-		PreRegisterResponse response = preRegisterService.register(eventId, userId, request);
+
+		// Fingerprint 기록을 위해 visitorId 전달
+		String visitorId = (String)httpRequest.getAttribute("VISITOR_ID");
+		if (visitorId == null) {
+			visitorId = deviceId;
+		}
+
+		PreRegisterResponse response = preRegisterService.register(eventId, userId, request, visitorId);
 		return ApiResponse.created("사전등록이 완료되었습니다.", response);
 	}
 
 
@@ -4,6 +4,7 @@
 import java.util.List;
 import java.util.Optional;
 
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.ApplicationEventPublisher;
 import org.springframework.data.redis.core.StringRedisTemplate;
 import org.springframework.stereotype.Service;
@@ -24,13 +25,12 @@
 import com.back.global.error.code.EventErrorCode;
 import com.back.global.error.code.PreRegisterErrorCode;
 import com.back.global.error.exception.ErrorException;
+import com.back.global.security.service.FingerprintService;
 
-import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 
 @Slf4j
 @Service
-@RequiredArgsConstructor
 @Transactional(readOnly = true)
 public class PreRegisterService {
 
@@ -40,68 +40,113 @@ public class PreRegisterService {
 	private final ApplicationEventPublisher eventPublisher;
 	private final StringRedisTemplate redisTemplate;
 	private final S3PresignedService s3PresignedService;
+	private FingerprintService fingerprintService;
+
+	public PreRegisterService(
+		PreRegisterRepository preRegisterRepository,
+		EventRepository eventRepository,
+		UserRepository userRepository,
+		ApplicationEventPublisher eventPublisher,
+		StringRedisTemplate redisTemplate,
+		S3PresignedService s3PresignedService) {
+		this.preRegisterRepository = preRegisterRepository;
+		this.eventRepository = eventRepository;
+		this.userRepository = userRepository;
+		this.eventPublisher = eventPublisher;
+		this.redisTemplate = redisTemplate;
+		this.s3PresignedService = s3PresignedService;
+	}
+
+	@Autowired(required = false)
+	public void setFingerprintService(FingerprintService fingerprintService) {
+		this.fingerprintService = fingerprintService;
+	}
 
 	private static final String SMS_VERIFIED_PREFIX = "SMS_VERIFIED:";
 
 	@Transactional
-	public PreRegisterResponse register(Long eventId, Long userId, PreRegisterCreateRequest request) {
+	public PreRegisterResponse register(Long eventId, Long userId, PreRegisterCreateRequest request, String visitorId) {
 		Event event = findEventById(eventId);
 		User user = findUserById(userId);
 
-		// 사전등록 기간 검증
-		validatePreRegistrationPeriod(event);
+		try {
+			// 사전등록 기간 검증
+			validatePreRegistrationPeriod(event);
 
-		// SMS 인증 완료 여부 검증 (플래그 삭제하지 않고 검증만)
-		validateSmsVerificationWithoutDelete(request.phoneNumber());
+			// SMS 인증 완료 여부 검증 (플래그 삭제하지 않고 검증만)
+			validateSmsVerificationWithoutDelete(request.phoneNumber());
 
-		// 본인 인증 정보 검증 (회원가입 정보와 대조)
-		validateUserInfo(user, request);
+			// 본인 인증 정보 검증 (회원가입 정보와 대조)
+			validateUserInfo(user, request);
 
-		// 약관 동의 검증
-		validateAgreements(request);
+			// 약관 동의 검증
+			validateAgreements(request);
 
-		// 기존 사전등록 확인 (CANCELED 상태면 재활용)
-		Optional<PreRegister> existingPreRegister = preRegisterRepository.findByEvent_IdAndUser_Id(eventId, userId);
+			// 기존 사전등록 확인 (CANCELED 상태면 재활용)
+			Optional<PreRegister> existingPreRegister = preRegisterRepository.findByEvent_IdAndUser_Id(eventId, userId);
 
-		if (existingPreRegister.isPresent()) {
-			PreRegister preRegister = existingPreRegister.get();
+			if (existingPreRegister.isPresent()) {
+				PreRegister preRegister = existingPreRegister.get();
 
-			// REGISTERED 상태면 중복 등록 예외
-			if (preRegister.isRegistered()) {
-				throw new ErrorException(PreRegisterErrorCode.ALREADY_PRE_REGISTERED);
-			}
+				// REGISTERED 상태면 중복 등록 예외
+				if (preRegister.isRegistered()) {
+					throw new ErrorException(PreRegisterErrorCode.ALREADY_PRE_REGISTERED);
+				}
 
-			// CANCELED 상태면 재등록 (상태만 변경)
-			preRegister.reRegister();
+				// CANCELED 상태면 재등록 (상태만 변경)
+				preRegister.reRegister();
 
-			// 모든 검증 통과 후 SMS 인증 플래그 삭제
-			deleteSmsVerificationFlag(request.phoneNumber());
+				// 모든 검증 통과 후 SMS 인증 플래그 삭제
+				deleteSmsVerificationFlag(request.phoneNumber());
 
-			return PreRegisterResponse.from(preRegister);
-		}
+				// Fingerprint 성공 기록
+				if (fingerprintService != null && visitorId != null) {
+					fingerprintService.recordAttempt(visitorId, true);
+				}
 
-		// 새로운 사전등록 생성
-		PreRegister preRegister = PreRegister.builder()
-			.event(event)
-			.user(user)
-			.preRegisterAgreeTerms(request.agreeTerms())
-			.preRegisterAgreePrivacy(request.agreePrivacy())
-			.build();
+				return PreRegisterResponse.from(preRegister);
+			}
 
-		PreRegister savedPreRegister = preRegisterRepository.save(preRegister);
+			// 새로운 사전등록 생성
+			PreRegister preRegister = PreRegister.builder()
+				.event(event)
+				.user(user)
+				.preRegisterAgreeTerms(request.agreeTerms())
+				.preRegisterAgreePrivacy(request.agreePrivacy())
+				.build();
 
-		// 모든 검증 통과 후 SMS 인증 플래그 삭제
-		deleteSmsVerificationFlag(request.phoneNumber());
+			PreRegister savedPreRegister = preRegisterRepository.save(preRegister);
 
-		eventPublisher.publishEvent(
-			new PreRegisterDoneMessage(
-				userId,
-				savedPreRegister.getId(),
-				event.getTitle()
-			)
-		);
+			// 모든 검증 통과 후 SMS 인증 플래그 삭제
+			deleteSmsVerificationFlag(request.phoneNumber());
+
+			eventPublisher.publishEvent(
+				new PreRegisterDoneMessage(
+					userId,
+					savedPreRegister.getId(),
+					event.getTitle()
+				)
+			);
+
+			// Fingerprint 성공 기록
+			if (fingerprintService != null && visitorId != null) {
+				fingerprintService.recordAttempt(visitorId, true);
+			}
 
-		return PreRegisterResponse.from(savedPreRegister);
+			return PreRegisterResponse.from(savedPreRegister);
+		} catch (ErrorException e) {
+			// Fingerprint 실패 기록 (검증 실패)
+			if (fingerprintService != null && visitorId != null) {
+				fingerprintService.recordAttempt(visitorId, false);
+			}
+			throw e;
+		} catch (Exception e) {
+			// Fingerprint 실패 기록 (시스템 에러)
+			if (fingerprintService != null && visitorId != null) {
+				fingerprintService.recordAttempt(visitorId, false);
+			}
+			throw e;
+		}
 	}
 
 	@Transactional
@@ -217,4 +262,3 @@ private void deleteSmsVerificationFlag(String phoneNumber) {
 		redisTemplate.delete(verifiedKey);
 	}
 }
-
 
@@ -0,0 +1,95 @@
+package com.back.global.config;
+
+import org.springframework.boot.autoconfigure.condition.ConditionalOnProperty;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Profile;
+import org.springframework.data.redis.connection.RedisConnectionFactory;
+import org.springframework.data.redis.connection.RedisPassword;
+import org.springframework.data.redis.connection.RedisStandaloneConfiguration;
+import org.springframework.data.redis.connection.lettuce.LettuceConnectionFactory;
+
+import io.github.bucket4j.distributed.ExpirationAfterWriteStrategy;
+import io.github.bucket4j.redis.lettuce.cas.LettuceBasedProxyManager;
+import io.lettuce.core.RedisClient;
+import io.lettuce.core.api.StatefulRedisConnection;
+import io.lettuce.core.codec.ByteArrayCodec;
+import io.lettuce.core.codec.RedisCodec;
+import io.lettuce.core.codec.StringCodec;
+import jakarta.annotation.PreDestroy;
+
+/**
+ * Bucket4j Redis 설정
+ *
+ * Bucket4j를 Redis와 연동하여 분산 환경에서 Rate Limiting 구현
+ */
+@Configuration
+@Profile("!test")
+@ConditionalOnProperty(name = "security.bot-protection.rate-limit.enabled", havingValue = "true", matchIfMissing = false)
+public class Bucket4jConfig {
+
+	private RedisClient redisClient;
+	private StatefulRedisConnection<String, byte[]> connection;
+
+	/**
+	 * Lettuce 기반 Bucket4j ProxyManager 생성
+	 *
+	 * @param redisConnectionFactory Redis Connection Factory
+	 * @return LettuceBasedProxyManager
+	 */
+	@Bean
+	public LettuceBasedProxyManager<String> lettuceBasedProxyManager(
+		RedisConnectionFactory redisConnectionFactory
+	) {
+		LettuceConnectionFactory lettuceFactory = (LettuceConnectionFactory)redisConnectionFactory;
+		RedisStandaloneConfiguration standaloneConfig = lettuceFactory.getStandaloneConfiguration();
+
+		// Redis URI 생성 (비밀번호 포함)
+		String redisUri;
+		RedisPassword password = standaloneConfig.getPassword();
+		if (password.isPresent()) {
+			// redis://:{password}@{host}:{port} 형식
+			redisUri = String.format("redis://:%s@%s:%d",
+				new String(password.get()),
+				standaloneConfig.getHostName(),
+				standaloneConfig.getPort()
+			);
+		} else {
+			// redis://{host}:{port} 형식
+			redisUri = String.format("redis://%s:%d",
+				standaloneConfig.getHostName(),
+				standaloneConfig.getPort()
+			);
+		}
+
+		// Redis Client 생성
+		redisClient = RedisClient.create(redisUri);
+
+		// Redis Connection 생성
+		connection = redisClient.connect(
+			RedisCodec.of(StringCodec.UTF8, ByteArrayCodec.INSTANCE)
+		);
+
+		// ProxyManager 빌더 설정
+		return LettuceBasedProxyManager.builderFor(connection)
+			.withExpirationStrategy(
+				ExpirationAfterWriteStrategy.basedOnTimeForRefillingBucketUpToMax(
+					java.time.Duration.ofMinutes(10) // Bucket 만료 시간
+				)
+			)
+			.build();
+	}
+
+	/**
+	 * Bean 소멸 시 Redis 리소스 정리
+	 */
+	@PreDestroy
+	public void cleanup() {
+		if (connection != null) {
+			connection.close();
+		}
+		if (redisClient != null) {
+			redisClient.shutdown();
+		}
+	}
+}