[Volume 1] 회원가입, 내 정보 조회, 비밀번호 변경 기능 구현#36
Merged
Praesentia-YKM merged 12 commits intoLoopers-dev-lab:Praesentia-YKMfrom Mar 12, 2026
Merged
[Volume 1] 회원가입, 내 정보 조회, 비밀번호 변경 기능 구현#36Praesentia-YKM merged 12 commits intoLoopers-dev-lab:Praesentia-YKMfrom
Praesentia-YKM merged 12 commits intoLoopers-dev-lab:Praesentia-YKMfrom
Conversation
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- spring-security-crypto 의존성 추가 (BCryptPasswordEncoder) - PasswordEncoderConfig 빈 등록 - ErrorType에 UNAUTHORIZED 추가 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- 4개 VO 구현 (LoginId, Password, MemberName, Email) - MemberModel 엔티티 (@Embedded VO, matchesPassword 행위 메서드) - MemberRepository 인터페이스 및 JPA 구현 - ErrorType 도메인 에러 코드 추가 (10개) - 단위 테스트: VO 검증 + MemberModel + Repository 통합테스트 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- MemberSignupService (중복 체크, 비밀번호 암호화, 저장) - 단위 테스트: Mock을 활용한 동작 검증 - 통합 테스트: 실제 DB 연동 검증 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- MemberAuthService (loginId/password 검증, 회원 조회) - 단위 테스트: Mock을 활용한 동작 검증 - 통합 테스트: 실제 DB 연동 검증 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- MemberPasswordService (현재 비밀번호 검증, 새 비밀번호 암호화 저장) - 단위 테스트: Mock을 활용한 동작 검증 - 통합 테스트: 실제 DB 연동 검증 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- MemberFacade (signup, getMyInfo, changePassword) - MemberInfo 응답 DTO (이름 마스킹 포함) - MemberV1Controller (POST /members, GET /me, PATCH /me/password) - MemberV1Dto (SignupRequest, MemberResponse, ChangePasswordRequest) - E2E 테스트: MemberV1ApiE2ETest - MemberFacadeTest 단위 테스트 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Example/Core 테스트 DisplayName 자연스럽게 개선 - TEST-README.md 테스트 체크리스트 추가 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
📝 WalkthroughWalkthrough회원 관리 시스템 기능을 추가하고, Claude 개발 환경 설정을 구성하며, 빌드 의존성을 추가한다. TDD 지원을 위한 Notion 로거 훅을 추가하고, 회원가입/인증/비밀번호 변경 엔드포인트를 구현한다. Changes
Sequence Diagram(s)sequenceDiagram
participant Client
participant Controller as MemberV1Controller
participant Facade as MemberFacade
participant SignupSvc as MemberSignupService
participant AuthSvc as MemberAuthService
participant PasswordSvc as MemberPasswordService
participant Repo as MemberRepository
participant Encoder as PasswordEncoder
participant DB as Database
Note over Client,DB: 회원가입 플로우
Client->>Controller: POST /api/v1/members (로그인ID, 비밀번호, 이름, 생년월일, 이메일)
Controller->>Facade: signup(loginId, password, name, birthDate, email)
Facade->>SignupSvc: signup(loginId, rawPassword, name, birthDate, email)
SignupSvc->>Repo: findByLoginId(loginId)
Repo->>DB: SELECT * FROM member WHERE login_id=?
DB-->>Repo: 없음
SignupSvc->>SignupSvc: 값 객체 생성 (LoginId, MemberName, Email, Password)
SignupSvc->>Encoder: encode(rawPassword)
Encoder-->>SignupSvc: encodedPassword
SignupSvc->>Repo: save(MemberModel)
Repo->>DB: INSERT INTO member ...
DB-->>Repo: MemberModel (id 생성)
Repo-->>SignupSvc: MemberModel
SignupSvc-->>Facade: MemberModel
Facade->>Facade: MemberInfo.from(MemberModel)
Facade-->>Controller: MemberInfo
Controller-->>Client: 200 OK {loginId, name, birthDate, email}
Note over Client,DB: 인증 및 내 정보 조회 플로우
Client->>Controller: GET /api/v1/members/me (헤더: loginId, password)
Controller->>Facade: getMyInfo(loginId, password)
Facade->>AuthSvc: authenticate(loginId, password)
AuthSvc->>Repo: findByLoginId(loginId)
Repo->>DB: SELECT * FROM member WHERE login_id=?
DB-->>Repo: MemberModel
Repo-->>AuthSvc: MemberModel
AuthSvc->>AuthSvc: MemberModel.matchesPassword(password, encoder)
AuthSvc->>Encoder: matches(rawPassword, encodedPassword)
Encoder-->>AuthSvc: true/false
AuthSvc-->>Facade: MemberModel (또는 예외)
Facade->>Facade: MemberInfo.fromWithMaskedName(MemberModel)
Facade-->>Controller: MemberInfo
Controller-->>Client: 200 OK {loginId, maskedName, birthDate, email}
Note over Client,DB: 비밀번호 변경 플로우
Client->>Controller: PATCH /api/v1/members/me/password (헤더: loginId, password, 요청체: 현재/신규 비밀번호)
Controller->>Facade: changePassword(loginId, password, currentPassword, newPassword)
Facade->>AuthSvc: authenticate(loginId, password)
AuthSvc->>Repo: findByLoginId(loginId)
Repo->>DB: SELECT * FROM member WHERE login_id=?
DB-->>Repo: MemberModel
AuthSvc-->>Facade: MemberModel
Facade->>PasswordSvc: changePassword(member, currentPassword, newPassword)
PasswordSvc->>PasswordSvc: member.matchesPassword(currentPassword, encoder)
PasswordSvc->>Encoder: matches(currentPassword, encodedPassword)
Encoder-->>PasswordSvc: true/false
PasswordSvc->>PasswordSvc: Password 값 객체 생성 및 검증
PasswordSvc->>Encoder: encode(newPassword)
Encoder-->>PasswordSvc: newEncodedPassword
PasswordSvc->>Repo: save(updatedMember)
Repo->>DB: UPDATE member SET password=? WHERE id=?
DB-->>Repo: updated MemberModel
Repo-->>PasswordSvc: MemberModel
PasswordSvc-->>Facade: void
Facade-->>Controller: void
Controller-->>Client: 200 OK
Estimated code review effort🎯 4 (Complex) | ⏱️ ~75 minutes 회원 관리 시스템이 도메인, 애플리케이션, 인프라, API 5개 레이어에 걸쳐 17개 클래스(~500줄), 11개 테스트 파일(~950줄)을 추가한다. 비밀번호 암호화, 생년월일 검증, 입력값 마스킹 등 보안/유효성 검증 로직이 밀도 있게 분포하며, 각 계층의 책임 분리와 값 객체 설계를 검토해야 한다. TDD 훅과 설정 파일은 비교적 단순하지만, 회원 기능 구현의 복잡도가 전체 난이도를 상향한다. Possibly related PRs
Suggested reviewers
검토 시 주의사항보안 관점:
운영 관점:
테스트 관점:
성능 관점:
🚥 Pre-merge checks | ✅ 2 | ❌ 1❌ Failed checks (1 warning)
✅ Passed checks (2 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
fix : 예제 테스트 코드 오류 해결을 위한 testcontainers 버전 업
![coderabbitai[bot]](https://avatars.githubusercontent.com/in/347564?s=60&v=4){kind=small}
There was a problem hiding this comment.
Actionable comments posted: 14
🧹 Nitpick comments (21)
apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleModelTest.java (1)
35-63: 경계값 테스트 케이스 누락 가능성이 있다.현재 테스트는 다음만 검증한다:
- name: 공백 문자열(
" ")- description: 빈 문자열(
"")운영 환경에서 NPE 또는 예상치 못한 예외가 발생할 수 있으므로, 다음 경계값 케이스 추가를 권장한다:
null입력 (name, description 각각)- name이 빈 문자열(
"")인 경우- description이 공백 문자열(
" ")인 경우추가 테스트가 없으면 도메인 모델의 null 처리 로직이 실제로 동작하는지 검증할 수 없다.
♻️ 추가 테스트 케이스 예시
`@DisplayName`("제목이 null이면 예외가 발생한다") `@Test` void throwsOnNullTitle() { // act CoreException result = assertThrows(CoreException.class, () -> { new ExampleModel(null, "설명"); }); // assert assertThat(result.getErrorType()).isEqualTo(ErrorType.BAD_REQUEST); } `@DisplayName`("설명이 null이면 예외가 발생한다") `@Test` void throwsOnNullDescription() { // act CoreException result = assertThrows(CoreException.class, () -> { new ExampleModel("제목", null); }); // assert assertThat(result.getErrorType()).isEqualTo(ErrorType.BAD_REQUEST); }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleModelTest.java` around lines 35 - 63, Add missing boundary tests for ExampleModel to cover null and empty/blank variants: create new test methods in ExampleModelTest (mirroring throwsOnBlankTitle and throwsOnEmptyDescription) that assert CoreException is thrown with ErrorType.BAD_REQUEST when new ExampleModel is constructed with name == null, description == null, name == "" (empty string), and description == " " (blank); ensure each test uses assertThrows(CoreException.class, () -> new ExampleModel(...)) and asserts result.getErrorType() equals ErrorType.BAD_REQUEST so null-handling and empty/blank handling in ExampleModel are verified.apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleServiceIntegrationTest.java (1)
29-32:@BeforeEach추가를 권장한다현재
@AfterEach에서만 테이블을 truncate하고 있다. 이전 테스트가 예외로 종료되거나 테스트 실행 순서가 변경될 경우, 테스트 시작 시점의 데이터 상태를 보장하지 못해 플래키 테스트가 발생할 수 있다.
@BeforeEach에서도 cleanup을 수행하면 각 테스트의 초기 상태를 명시적으로 보장할 수 있다.♻️ 제안하는 수정안
+ `@BeforeEach` + void setUp() { + databaseCleanUp.truncateAllTables(); + } + `@AfterEach` void tearDown() { databaseCleanUp.truncateAllTables(); }
BeforeEachimport도 추가해야 한다:import org.junit.jupiter.api.BeforeEach;🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleServiceIntegrationTest.java` around lines 29 - 32, Add a `@BeforeEach` setup that calls databaseCleanUp.truncateAllTables() to guarantee a clean DB state before each test (in addition to the existing `@AfterEach` tearDown method), and import org.junit.jupiter.api.BeforeEach; locate the ExampleServiceIntegrationTest class and add a setup method (e.g., setUp()) that invokes databaseCleanUp.truncateAllTables() so each test starts from a known state..claude/settings.json (1)
9-10:~/.zshrc소싱 시 예상치 못한 지연이나 부작용이 발생할 수 있다.운영 관점에서
~/.zshrc에는 대화형 셸 설정(프롬프트, 자동완성, 플러그인 등)이 포함될 수 있어 hook 실행 시 불필요한 오버헤드가 발생하거나 예상치 못한 출력이 생길 수 있다. 또한2>/dev/null로 에러를 숨기면 디버깅이 어려워진다.수정 권장사항:
- 환경 변수만 필요하다면
~/.zshenv또는 별도 env 파일 소싱을 고려하다- 또는
.env파일에서 직접 변수를 로드하는 방식으로 변경하다대안 예시
-"command": "source ~/.zshrc 2>/dev/null; python3 \"$CLAUDE_PROJECT_DIR\"/.claude/hooks/tdd-notion-logger.py", +"command": "[ -f \"$CLAUDE_PROJECT_DIR/.env\" ] && export $(grep -v '^#' \"$CLAUDE_PROJECT_DIR/.env\" | xargs); python3 \"$CLAUDE_PROJECT_DIR\"/.claude/hooks/tdd-notion-logger.py",🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In @.claude/settings.json around lines 9 - 10, The command currently sources ~/.zshrc which can cause interactive-shell side effects and hides errors via 2>/dev/null; change the "command" value so it does not source ~/.zshrc — instead either source a non-interactive env file (e.g., ~/.zshenv) or load a project .env before running the hook, and remove the silence redirect so failures surface; update the command that invokes .claude/hooks/tdd-notion-logger.py (the "command" key) to explicitly export or source only needed env vars (or use a dotenv loader) and ensure no 2>/dev/null redirection remains so errors are visible..claude/hooks/tdd-notion-logger.py (3)
442-466: URL 스킴 검증을 추가하여 S310 경고를 해결하고 방어적 코딩을 적용하는 것이 좋다.현재 URL이
https://api.notion.com으로 하드코딩되어 있어 실질적인 위험은 낮으나, 향후 코드 변경 시 의도치 않은 스킴(file:, ftp: 등) 사용을 방지하기 위해 명시적 검증이 권장된다.방어적 코딩 적용 예시
def append_blocks_to_notion(api_key, blocks): """Append blocks to the Notion page using urllib (no external deps).""" url = f"https://api.notion.com/v1/blocks/{NOTION_PAGE_ID}/children" + + # Defensive: ensure URL uses HTTPS scheme only + if not url.startswith("https://"): + sys.stderr.write("Security error: Non-HTTPS URL not allowed\n") + return + payload = json.dumps({"children": blocks}).encode("utf-8")🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In @.claude/hooks/tdd-notion-logger.py around lines 442 - 466, In append_blocks_to_notion add defensive URL validation before creating the Request: parse the target URL (built from NOTION_PAGE_ID) with urllib.parse.urlparse and assert the scheme is "https" (and optionally that netloc equals "api.notion.com"); if the check fails, log/write an error and abort (raise ValueError or return) instead of proceeding to build/execute the urllib.request.Request. This ensures append_blocks_to_notion only sends requests over HTTPS and prevents accidental file:/ftp: schemes.
17-19: NOTION_PAGE_ID 하드코딩은 환경 변수로 관리해야 한다.운영 관점에서 Notion 페이지 ID가 하드코딩되면 페이지 변경 시 코드 수정 및 재배포가 필요하다. 또한 다른 프로젝트나 환경에서 재사용이 불가능하다.
수정안:
-NOTION_PAGE_ID = "2fc2e1bd53b2809cbd5ed9009dc775bd" +NOTION_PAGE_ID = os.environ.get("NOTION_PAGE_ID", "")main() 함수에서 NOTION_API_KEY와 함께 검증 로직 추가가 필요하다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In @.claude/hooks/tdd-notion-logger.py around lines 17 - 19, Replace the hardcoded NOTION_PAGE_ID with a value read from the environment and add validation in main(): read NOTION_PAGE_ID (and NOTION_API_KEY) from os.environ (or equivalent env loader), validate they are present/non-empty at startup, and fail fast with a clear error if missing; update any usages that reference the constant NOTION_PAGE_ID to use the env-backed value, leaving NOTION_API_VERSION and KST as-is, and put the validation logic in the main() function so the process logs/raises an error before proceeding.
458-466: 에러 발생 시 컨텍스트 정보가 부족하여 디버깅이 어렵다.운영 환경에서 Notion API 호출 실패 시, 어떤 테스트 클래스의 로깅이 실패했는지 파악하기 어렵다. 에러 메시지에 테스트 클래스명, 타임스탬프 등 컨텍스트를 포함해야 한다.
개선된 에러 핸들링
-def append_blocks_to_notion(api_key, blocks): +def append_blocks_to_notion(api_key, blocks, context=""): """Append blocks to the Notion page using urllib (no external deps).""" url = f"https://api.notion.com/v1/blocks/{NOTION_PAGE_ID}/children" payload = json.dumps({"children": blocks}).encode("utf-8") # ... request setup ... except urllib.error.HTTPError as e: body = e.read().decode("utf-8", errors="replace") - sys.stderr.write(f"Notion API error {e.code}: {body}\n") + sys.stderr.write(f"Notion API error {e.code} [{context}]: {body}\n")🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In @.claude/hooks/tdd-notion-logger.py around lines 458 - 466, The except blocks around urllib.request.urlopen must include richer context (timestamp, test class name, request URL/body and traceback) to aid debugging: update the handlers for urllib.error.HTTPError and urllib.error.URLError that reference e and e.read().decode to build and write a detailed message including datetime.now(), the test class identifier (use the existing variable that holds the test/class name or add a parameter like test_class or class_name if none exists), the req.full_url or req.get_full_url(), any request payload (decode req.data if present), the HTTP status/body (from e.read()), and the full traceback (use traceback.format_exc()); include similar contextual details when resp.status != 200 (use resp.status, req URL/body and timestamp). Ensure you still preserve the original exception handling symbols (urllib.request.urlopen, req, resp, urllib.error.HTTPError, urllib.error.URLError, e) while replacing simple sys.stderr.write calls with the enriched message.apps/commerce-api/src/main/java/com/loopers/domain/member/LoginId.java (1)
22-27: 로그인 ID 길이 제한 검증 추가를 권장한다.현재 영문/숫자만 검증하고 길이 제한이 없다. 데이터베이스 컬럼 길이 제한에 의존하면 DB 오류가 발생하여 사용자에게 불명확한 에러 메시지가 전달될 수 있다. 도메인 계층에서 길이 검증을 수행하면 명확한 에러 메시지 제공이 가능하다.
♻️ 길이 검증 추가 제안
public class LoginId { private static final Pattern PATTERN = Pattern.compile("^[a-zA-Z0-9]+$"); + private static final int MIN_LENGTH = 4; + private static final int MAX_LENGTH = 20; `@Column`(name = "login_id", nullable = false, unique = true) private String value; public LoginId(String value) { - if (value == null || value.isBlank() || !PATTERN.matcher(value).matches()) { + if (value == null || value.isBlank()) { + throw new CoreException(ErrorType.INVALID_LOGIN_ID); + } + if (value.length() < MIN_LENGTH || value.length() > MAX_LENGTH) { + throw new CoreException(ErrorType.INVALID_LOGIN_ID); + } + if (!PATTERN.matcher(value).matches()) { throw new CoreException(ErrorType.INVALID_LOGIN_ID); } this.value = value; }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/domain/member/LoginId.java` around lines 22 - 27, 현재 LoginId 생성자에서 영문/숫자 패턴만 검증하고 길이 검증이 없어 DB에러로 이어질 수 있으니 LoginId(String value) 내부에 길이 제한을 추가하세요: 클래스 레벨에 MIN_LENGTH/MAX_LENGTH 상수를 정의하고 생성자에서 value == null || value.isBlank() 체크 다음에 value.length()가 MIN_LENGTH 이상 MAX_LENGTH 이하인지 검사한 뒤 범위를 벗어나면 CoreException(ErrorType.INVALID_LOGIN_ID) 를 던지도록 하며 기존 PATTERN.matcher(value).matches() 호출은 길이 검사 이후에 실행되도록 변경하세요.apps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.java (1)
39-51: 인증 성공 테스트에서 추가 검증이 필요하다.현재 테스트는
loginId일치만 검증한다. 인증 성공 시 반환되는MemberModel의 다른 필드들(name, birthDate, email)도 함께 검증하면 데이터 무결성을 보장할 수 있다.💚 추가 검증 제안
// then - assertThat(result.loginId().value()).isEqualTo("kwonmo"); + assertAll( + () -> assertThat(result.loginId().value()).isEqualTo("kwonmo"), + () -> assertThat(result.name().value()).isEqualTo("양권모"), + () -> assertThat(result.birthDate()).isEqualTo(LocalDate.of(1998, 9, 16)), + () -> assertThat(result.email().value()).isEqualTo("kwonmo@example.com") + );🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.java` around lines 39 - 51, Update the returnsMemberOnValidCredentials test in MemberAuthServiceIntegrationTest to assert the additional MemberModel fields returned by memberAuthService.authenticate; after calling memberAuthService.authenticate("kwonmo", "Test1234!"), add assertions on result.name(), result.birthDate() (compare to LocalDate.of(1998, 9, 16)), and result.email() (compare to "kwonmo@example.com") in addition to the existing loginId assertion to ensure full data integrity.apps/commerce-api/src/test/java/com/loopers/domain/member/MemberSignupServiceIntegrationTest.java (1)
37-116: email이 null인 경우의 회원가입 테스트가 누락되었다.
MemberModel은 email이 null이어도 생성 가능하다(MemberModelTest.createsWithNullEmail). 그러나MemberSignupService를 통한 email 없는 회원가입 시나리오에 대한 통합 테스트가 없다. 실제 운영 환경에서 email 선택 입력 시 문제가 발생할 수 있다.💚 email null 회원가입 테스트 추가 제안
`@DisplayName`("email 없이도 회원가입할 수 있다") `@Test` void createsMemberWithoutEmail() { // given String loginId = "noEmailUser"; String password = "Test1234!"; String name = "테스트"; LocalDate birthDate = LocalDate.of(1990, 1, 1); // when MemberModel result = memberSignupService.signup(loginId, password, name, birthDate, null); // then assertAll( () -> assertThat(result.getId()).isNotNull(), () -> assertThat(result.email()).isNull() ); }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberSignupServiceIntegrationTest.java` around lines 37 - 116, Add an integration test that verifies signup with a null email works: create a new test method (e.g., createsMemberWithoutEmail) that calls memberSignupService.signup(loginId, password, name, birthDate, null) and then asserts the returned MemberModel (MemberModel result) has a non-null id and that result.email() is null; place this alongside the other Signup nested tests and use the same conventions as existing tests (DisplayName, `@Test`) to ensure coverage for the email-null signup path.apps/commerce-api/src/main/java/com/loopers/application/member/MemberInfo.java (1)
9-25: email null 처리 로직이 중복되어 있다.
from()과fromWithMaskedName()메서드에서 email null 처리 로직이 동일하게 반복된다. 현재는 간단한 로직이지만, 추후 email 처리 로직이 복잡해지면 유지보수 부담이 증가한다.♻️ 헬퍼 메서드 추출 제안
+ private static String extractEmail(MemberModel model) { + return model.email() != null ? model.email().value() : null; + } + public static MemberInfo from(MemberModel model) { return new MemberInfo( model.loginId().value(), model.name().value(), model.birthDate(), - model.email() != null ? model.email().value() : null + extractEmail(model) ); } public static MemberInfo fromWithMaskedName(MemberModel model) { return new MemberInfo( model.loginId().value(), model.name().masked(), model.birthDate(), - model.email() != null ? model.email().value() : null + extractEmail(model) ); }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/application/member/MemberInfo.java` around lines 9 - 25, from()와 fromWithMaskedName()에서 동일한 이메일 null 처리 로직이 중복되어 있으므로 중복 제거를 위해 이메일 값을 반환하는 private static 헬퍼 메서드(예: getEmailValue(MemberModel model) 또는 extractEmail(MemberModel model))를 추가하고, 현재 각 메서드에서 사용 중인 model.email() != null ? model.email().value() : null 구문을 해당 헬퍼 메서드 호출로 교체하세요; 참조 대상: MemberInfo.from, MemberInfo.fromWithMaskedName, MemberModel.email(), MemberInfo(생성자).apps/commerce-api/src/main/java/com/loopers/domain/member/Email.java (1)
15-44:toString()미구현으로 인한 민감정보 노출 위험이 있다.
toString()이 구현되지 않아 기본Object.toString()또는 IDE 자동생성 시 email 값이 그대로 로그에 노출될 수 있다. 운영 환경에서 로그 수집 시 PII(개인식별정보) 유출 위험이 존재한다.마스킹된 형태로
toString()을 구현하거나, 최소한 값을 노출하지 않는 형태로 재정의를 권장한다.🛡️ 마스킹된 toString() 구현 제안
`@Override` public int hashCode() { return Objects.hashCode(value); } + + `@Override` + public String toString() { + if (value == null) return "Email[null]"; + int atIndex = value.indexOf('@'); + if (atIndex <= 1) return "Email[***]"; + return "Email[" + value.charAt(0) + "***" + value.substring(atIndex) + "]"; + }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/domain/member/Email.java` around lines 15 - 44, Implement a safe toString() in the Email class to avoid logging the raw PII: add an `@Override` public String toString() that does not return the plain value field (or value()), e.g. return a masked representation (mask the local part leaving only first/last char or return "[REDACTED EMAIL]") so logs never contain the full email; ensure the method references the existing value field (or value()) and does not change equals(Object) or hashCode().apps/commerce-api/src/test/java/com/loopers/domain/member/MemberModelTest.java (1)
23-66: 생성 실패 케이스에 대한 테스트가 누락되었다.
MemberModel생성 시 필수 필드(loginId,name,birthDate)가 null인 경우의 예외 처리 테스트가 없다. 운영 환경에서 잘못된 입력이 들어올 경우 예상치 못한 동작이 발생할 수 있다.다음 케이스에 대한 테스트 추가를 권장한다:
loginId가 null인 경우name이 null인 경우birthDate가 null인 경우🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberModelTest.java` around lines 23 - 66, Add negative tests that assert MemberModel's constructor throws when required fields are null: create three `@Test` methods (e.g., createsFailsWhenLoginIdNull, createsFailsWhenNameNull, createsFailsWhenBirthDateNull) which call new MemberModel(...) with null for LoginId, MemberName, and birthDate respectively (keep other args valid like encodedPassword and email) and use assertThrows(NullPointerException.class, () -> new MemberModel(...)) to verify the exception; reference the MemberModel constructor and matchesPassword usage to keep the tests consistent with existing setup.apps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.java (3)
34-34: 미사용 의존성MemberJpaRepository제거 필요
MemberJpaRepository가 주입되었으나 테스트 코드에서 사용되지 않는다. 불필요한 의존성은 테스트 의도를 흐리고 유지보수 비용을 증가시킨다.♻️ 수정 제안
- private final MemberJpaRepository memberJpaRepository; private final DatabaseCleanUp databaseCleanUp; `@Autowired` public MemberV1ApiE2ETest( TestRestTemplate testRestTemplate, - MemberJpaRepository memberJpaRepository, DatabaseCleanUp databaseCleanUp ) { this.testRestTemplate = testRestTemplate; - this.memberJpaRepository = memberJpaRepository; this.databaseCleanUp = databaseCleanUp; }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.java` at line 34, Remove the unused MemberJpaRepository dependency from the MemberV1ApiE2ETest class: delete the private final MemberJpaRepository field (and its constructor parameter or `@Autowired` injection if present) so the test class no longer declares or injects MemberJpaRepository; ensure any imports for MemberJpaRepository are also removed and the test compiles without that unused dependency.
193-211: 비밀번호 변경 후 새 비밀번호로 인증 성공 여부 검증 필요
returns200OnValidRequest테스트가 200 응답만 확인하고, 변경된 비밀번호로 실제 인증이 성공하는지 검증하지 않는다. 운영 환경에서 비밀번호 변경 로직이 정상 동작하지 않아도 테스트가 통과할 수 있다.♻️ 수정 제안
// then assertTrue(response.getStatusCode().is2xxSuccessful()); + + // 변경된 비밀번호로 인증 성공 확인 + ParameterizedTypeReference<ApiResponse<MemberV1Dto.MemberResponse>> meResponseType = + new ParameterizedTypeReference<>() {}; + ResponseEntity<ApiResponse<MemberV1Dto.MemberResponse>> meResponse = + testRestTemplate.exchange(ENDPOINT_ME, HttpMethod.GET, + new HttpEntity<>(null, authHeaders("kwonmo", "NewPass5678!")), + meResponseType); + assertTrue(meResponse.getStatusCode().is2xxSuccessful()); }🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.java` around lines 193 - 211, The test returns200OnValidRequest only asserts a 2xx status; extend it to verify the password actually changed by attempting authentication with the new password (and optionally asserting the old password fails). After calling the change-password endpoint in returns200OnValidRequest (which uses signupMember() and authHeaders("kwonmo", "Test1234!")), perform an authenticated request or token fetch using authHeaders("kwonmo", "NewPass5678!") (or call the login/auth endpoint) and assert success (e.g., 2xx and expected response body), and optionally try authHeaders("kwonmo", "Test1234!") and assert it fails to further validate the change.
122-140: 경계값 테스트 추가 권장: 비밀번호 길이, loginId 형식잘못된 loginId 형식 테스트는 존재하나, 비밀번호 최소/최대 길이(8자/16자) 경계값 테스트가 누락되어 있다. 경계값에서 발생하는 off-by-one 오류를 검출하기 위해 추가 테스트가 필요하다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.java` around lines 122 - 140, Add boundary tests in MemberV1ApiE2ETest to catch off-by-one password length bugs: create new `@Test` methods (e.g., returns400OnPasswordTooShort and returns400OnPasswordTooLong) that build MemberV1Dto.SignupRequest using ENDPOINT_SIGNUP and testRestTemplate.exchange; for the short case submit a password of length 7 (expect HttpStatus.BAD_REQUEST) and length 8 (expect success), and for the long case submit length 17 (expect BAD_REQUEST) and length 16 (expect success). Reuse the same ParameterizedTypeReference<ApiResponse<Object>> responseType and assertions pattern from the existing returns400OnInvalidLoginId test to keep behavior consistent.apps/commerce-api/src/test/java/com/loopers/application/member/MemberFacadeTest.java (1)
94-108: 테스트 데이터의 비밀번호 값 혼동 가능성인증 비밀번호(
Test1234!)와 요청 본문의currentPassword(Current1!)가 다른 값으로 설정되어 있다. 실제 운영 시나리오에서 헤더 인증 비밀번호와 변경 요청의 현재 비밀번호는 동일해야 하므로, 테스트 데이터가 실제 사용 패턴과 불일치한다.테스트 의도가 "위임 확인"이라면 현재 구조도 가능하나, 실제 시나리오와 일치하도록 동일한 비밀번호 값을 사용하는 것이 테스트 가독성과 유지보수 측면에서 유리하다.
♻️ 수정 제안
// when - memberFacade.changePassword("kwonmo", "Test1234!", "Current1!", "NewPass5678!"); + memberFacade.changePassword("kwonmo", "Test1234!", "Test1234!", "NewPass5678!"); // then - verify(memberPasswordService).changePassword(member, "Current1!", "NewPass5678!"); + verify(memberPasswordService).changePassword(member, "Test1234!", "NewPass5678!");🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/test/java/com/loopers/application/member/MemberFacadeTest.java` around lines 94 - 108, The test mixes two different password values which can confuse readers; update MemberFacadeTest so the password used in memberAuthService.authenticate("kwonmo", ...) matches the currentPassword passed to memberFacade.changePassword(...). Locate the authenticate stub in the test and the memberFacade.changePassword call and use the same password string for both the authentication step and the currentPassword argument, then keep the verify assertion on memberPasswordService.changePassword(member, currentPassword, "NewPass5678!") unchanged.apps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberRepositoryImpl.java (1)
10-12:@Repository어노테이션 사용 권장
@Component대신@Repository를 사용하면 Spring의 예외 변환 AOP가 적용되어 JPA 예외가 Spring의DataAccessException으로 변환된다. 이는 데이터 접근 계층의 의도를 명확히 하고, 예외 처리의 일관성을 높인다.♻️ 수정 제안
-import org.springframework.stereotype.Component; +import org.springframework.stereotype.Repository; import java.util.Optional; `@RequiredArgsConstructor` -@Component +@Repository public class MemberRepositoryImpl implements MemberRepository {🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberRepositoryImpl.java` around lines 10 - 12, Replace the generic `@Component` on the MemberRepositoryImpl class with Spring's `@Repository` to enable exception translation for JPA operations; specifically update the annotation on the MemberRepositoryImpl class (remove or replace the `@Component` above public class MemberRepositoryImpl implements MemberRepository) and add the appropriate org.springframework.stereotype.Repository import so Spring will apply DataAccessException translation to repository methods.apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1ApiSpec.java (2)
13-14: Swagger@Parameter어노테이션 추가 권장
getMe와changePassword메서드의loginId,password파라미터에@Parameter어노테이션이 없어 Swagger UI에서 헤더 파라미터 설명이 표시되지 않는다. API 문서 품질 향상을 위해 추가를 고려할 수 있다.🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1ApiSpec.java` around lines 13 - 14, Add Swagger `@Parameter` annotations for the header parameters used by the MemberV1ApiSpec methods so the header fields show in Swagger UI: annotate the loginId and password parameters on getMe(String loginId, String password) and on changePassword(...) with `@Parameter`(in = ParameterIn.HEADER, name = "loginId"/"password", description = "...", required = true/false as appropriate) so the headers are documented; update the imports to include io.swagger.v3.oas.annotations.Parameter and io.swagger.v3.oas.annotations.enums.ParameterIn and ensure the method signatures still compile.
16-18:ApiResponse<Object>타입 명확화 권장
changePassword메서드의 반환 타입이ApiResponse<Object>로 지정되어 있다. Swagger 문서에서 응답 스키마가 불명확해지므로, 실제 반환 데이터가 없다면ApiResponse<Void>또는 별도 응답 DTO를 사용하는 것이 API 문서화 측면에서 유리하다.♻️ 수정 제안
`@Operation`(summary = "비밀번호 변경", description = "비밀번호를 변경합니다.") - ApiResponse<Object> changePassword(String loginId, String password, + ApiResponse<Void> changePassword(String loginId, String password, MemberV1Dto.ChangePasswordRequest request);🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1ApiSpec.java` around lines 16 - 18, The method changePassword currently returns a generic ApiResponse<Object> which makes the Swagger response schema ambiguous; update the method signature in MemberV1ApiSpec by replacing ApiResponse<Object> with a more specific response type (preferably ApiResponse<Void> if there is no response body, or a dedicated DTO if you intend to return data), e.g., change the return type for changePassword(String loginId, String password, MemberV1Dto.ChangePasswordRequest request) to ApiResponse<Void> and adjust any related API docs/tests to match.apps/commerce-api/src/main/java/com/loopers/domain/member/Password.java (1)
25-36: 비밀번호 복잡도 검증 추가 권장현재 검증은 길이(8-16자)와 허용 문자만 확인하므로, "aaaaaaaa"처럼 영문자만으로 이루어진 약한 비밀번호도 허용된다. 보안 강화를 위해 대문자, 소문자, 숫자, 특수문자 중 최소 3가지 이상 조합을 요구하도록 검증 로직을 추가하고, 약한 비밀번호를 거부하는 테스트 케이스를 포함하도록 한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/domain/member/Password.java` around lines 25 - 36, The Password constructor currently only checks null/blank, length, and ALLOWED_PATTERN; add a complexity check in Password(String value) that verifies the value contains at least three of the four character classes (uppercase, lowercase, digit, special) and throw new CoreException(ErrorType.INVALID_PASSWORD) if the requirement is not met; implement the check using simple boolean predicates (e.g., containsUpper, containsLower, containsDigit, containsSpecial) based on the existing ALLOWED_PATTERN or Character methods and count the true predicates, and update/add unit tests to assert that weak passwords like "aaaaaaaa" or "AAAA1111" are rejected while valid complex passwords pass.apps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.java (1)
46-48: 도메인 엔티티가 Spring Security 타입에 직접 의존한다.이 의존성 때문에 encoder 구현을 바꾸는 작업이 도메인 엔티티 API 변경으로 번지고, 순수 도메인 테스트도 프레임워크 mock에 묶인다. 비밀번호 비교는 서비스나 도메인 포트로 옮기고, 엔티티는 해시 보관과 상태 변경만 담당하도록 분리하는 편이 유지보수와 장애 범위 관리에 유리하다. 추가로 같은 패턴이 domain 패키지 전체에 퍼져 있는지도 확인하고, 엔티티 테스트는 Spring 없이 수행하며 encoder 연동은 서비스 테스트에서 검증해야 한다.
As per coding guidelines,
**/domain/**/*.java: 도메인 규칙과 인프라 관심사가 섞이면 분리하도록 제안한다.🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed. In `@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.java` around lines 46 - 48, MemberModel currently depends on Spring Security PasswordEncoder via the matchesPassword method; remove this direct framework dependency by deleting matchesPassword from MemberModel and instead expose the stored hash (e.g., getPassword or getPasswordHash) and a state-changing method for setting/changing the hashed password (e.g., setPasswordHash or changePasswordHash) so the entity only stores and updates hashes. Move the responsibility for raw-password verification into the application/service layer or a domain port (e.g., MemberService or a PasswordVerifier port) where PasswordEncoder can be injected and used (call encoder.matches(rawPassword, member.getPasswordHash())). Also update tests: keep pure domain/entity tests framework-free and add service-level tests that verify encoder integration; scan other classes in the domain package for similar PasswordEncoder usages and refactor them the same way.
🤖 Prompt for all review comments with AI agents
Verify each finding against the current code and only fix it if needed.
Inline comments:
In @.claude/settings.local.json:
- Around line 7-17: The file .claude/settings.local.json contains
machine-specific paths and should not be tracked; add
".claude/settings.local.json" to .gitignore, remove the tracked file with git rm
--cached .claude/settings.local.json and commit that change, and replace the
committed content with a repository-safe alternative by creating a template
(e.g., settings.local.json.example) that documents using environment variables
like $JAVA_HOME and $DOCKER_HOST or explains how to populate local overrides so
developers copy it into their own untracked .claude/settings.local.json.
In @.gitignore:
- Line 3: .gitignore currently ignores any directory named "build" across the
repo which is too broad; update the ignore rules to scope to the repository root
and/or explicit module outputs by replacing the global "build/" pattern with a
root-anchored pattern such as "/build/" and/or explicit module output paths
(e.g., "module-name/build/" or "*/target/build/" as appropriate) and retain or
add negate rules if you need to allow specific source build folders; after
editing, verify with git check-ignore -v <path> (e.g.,
src/main/.../build/Example.java) to confirm those source paths are no longer
ignored.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.java`:
- Around line 17-26: Change authenticate so it never reveals whether loginId
exists: in MemberAuthService.authenticate, replace the distinct
CoreException(ErrorType.MEMBER_NOT_FOUND) and
CoreException(ErrorType.AUTHENTICATION_FAILED) flows with a single failure path
that always throws CoreException(ErrorType.AUTHENTICATION_FAILED) with a unified
message like "인증에 실패했습니다" when either memberRepository.findByLoginId(loginId)
yields empty or member.matchesPassword(password, passwordEncoder) returns false;
keep MemberModel return on success. Also ensure the login controller/endpoint
has rate-limiting applied and flag the route for future MFA integration to
further reduce enumeration/account-takeover risk.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberPasswordService.java`:
- Around line 17-31: The transaction boundary allows detached MemberModel
updates to overwrite concurrent changes; to fix, ensure changePassword runs with
fresh, managed state or optimistic locking: either make
MemberFacade.changePassword() `@Transactional` so authenticate() and
memberPasswordService.changePassword(...) execute in one transaction, or modify
MemberPasswordService.changePassword(...) to accept a memberId and re-retrieve
the MemberModel from memberRepository (e.g., findById) inside its transaction
before validation and save, or add a `@Version` field to MemberModel to enable
optimistic locking and surface conflicts as OptimisticLockException; also add an
integration test that fires two concurrent changePassword requests and asserts
one fails with a conflict.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberSignupService.java`:
- Around line 27-33: The current duplicate loginId check in MemberSignupService
is racy because findByLoginId(...) is separate from memberRepository.save(...);
modify MemberSignupService to catch persistence-level integrity exceptions
thrown by memberRepository.save(member) (e.g., DataIntegrityViolationException
or PersistenceException), map them to
CoreException(ErrorType.DUPLICATE_LOGIN_ID) while preserving the original
exception as the cause, and log the detailed error separately from the
user-facing message; additionally add tests that assert (1) concurrent signups
with identical loginId result in one success and the other mapped to
DUPLICATE_LOGIN_ID, and (2) a save-path integrity exception is translated to the
domain exception (use MemberSignupService and memberRepository.save to locate
code to change and CoreException/ErrorType to construct the mapped exception).
In
`@apps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberJpaRepository.java`:
- Around line 8-11: MemberModel queries currently return soft-deleted rows;
update the domain so soft-delete is always filtered by either adding
`@Where`(clause = "deleted_at IS NULL") to the MemberModel entity class or by
changing MemberJpaRepository.findByLoginIdValue(...) to use an explicit `@Query`
that includes "deleted_at IS NULL"; ensure you reference MemberModel,
MemberJpaRepository.findByLoginIdValue, BaseEntity and verify callers like
MemberAuthService.authenticate and MemberSignupService.signup now operate on
non-deleted accounts; apply the same `@Where` (or repository-query) pattern to all
other entities that extend BaseEntity so soft-deleted rows are globally
excluded.
In
`@apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1Controller.java`:
- Around line 36-52: The controller currently accepts plaintext passwords in the
custom header "X-Loopers-LoginPw" (used by getMe and changePassword), which is
insecure; update the API to use token/session-based authentication via the
standard Authorization header for authentication (remove the password parameter
from getMe and changePassword method signatures and stop reading
X-Loopers-LoginPw), change changePassword to accept only the
ChangePasswordRequest body (currentPassword, newPassword) and validate the
caller via the Authorization token (use existing auth middleware or memberFacade
methods that accept authenticated principal), and add input
validation/authorization checks in memberFacade.changePassword to ensure the
token owner matches the target account; if you cannot change the contract
immediately, at minimum stop logging the X-Loopers-LoginPw header and ensure it
is redacted in any logs/traces and add a TODO to migrate to Authorization-based
auth.
In `@apps/commerce-api/src/main/java/com/loopers/support/error/ErrorType.java`:
- Line 26: The MEMBER_NOT_FOUND enum entry in ErrorType and the
AUTHENTICATION_FAILED entry currently expose different user-facing messages;
change both ErrorType entries (MEMBER_NOT_FOUND and AUTHENTICATION_FAILED) to
use the same public message string (e.g., "아이디 또는 비밀번호가 일치하지 않습니다") while
preserving any distinct internal messages or logging fields (so logs still
record the precise cause). Update any code paths that map exceptions to
ErrorType to continue using these entries unchanged, and add an integration test
that triggers both scenarios and asserts the API response contains identical
user-facing messages for both cases.
In `@apps/commerce-api/src/test/java/com/loopers/domain/member/EmailTest.java`:
- Around line 33-42: Add a null-input case to the Email tests by updating the
parameterized test rejectsInvalidEmailFormats (or adding a new parameterized
test) to use `@NullAndEmptySource` instead of `@ValueSource` (or add
`@NullAndEmptySource` alongside) so that null is passed to new Email(value); keep
the assertion that a CoreException is thrown and that result.getErrorType()
equals ErrorType.INVALID_EMAIL; also add the required import
org.junit.jupiter.params.provider.NullAndEmptySource.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.java`:
- Around line 68-77: The test and service currently reveal distinct error types
for non-existent loginId (ErrorType.MEMBER_NOT_FOUND) and wrong password
(ErrorType.AUTHENTICATION_FAILED), enabling user-enumeration; change
MemberAuthService.authenticate to always throw the same public ErrorType (e.g.,
ErrorType.AUTHENTICATION_FAILED) for both "user not found" and "bad password"
cases while retaining detailed MEMBER_NOT_FOUND in internal logs, then update
the integration test MemberAuthServiceIntegrationTest (method
throwsOnNonExistentLoginId) and add/adjust the wrong-password test to assert the
unified ErrorType is returned for both scenarios.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceIntegrationTest.java`:
- Around line 42-55: Update the changesPasswordSuccessfully test in
MemberPasswordServiceIntegrationTest to assert that the old password is no
longer valid: after calling memberPasswordService.changePassword(member,
"Test1234!", "NewPass5678!"), attempt to authenticate with the old password via
memberAuthService.authenticate("kwonmo", "Test1234!") and assert it fails with
the expected failure code (e.g., PASSWORD_MISMATCH or the domain-specific
exception/result your auth layer returns); also rename the test method/display
name to reflect the intent (e.g.,
"changesPasswordSoOnlyNewPasswordAuthenticates") so it clearly documents that
only the new password should succeed.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceTest.java`:
- Around line 104-121: Add a new unit test in MemberPasswordServiceTest that
covers the birthdate-in-password failure branch: create a MemberModel with a
known birthDate (e.g., LocalDate.of(1998,9,16)), mock
passwordEncoder.matches("Current1234!", "currentEncoded") to return true, then
call memberPasswordService.changePassword(member, "Current1234!",
"<password-containing-19980916-or-19980916>") (e.g., "Pass19980916!"); assert
that a CoreException is thrown with ErrorType.INVALID_PASSWORD and
verify(memberRepository, never()).save(any()); this ensures the
validateAgainst(member.birthDate()) path is exercised and prevents saving weak
passwords containing the member's birth date.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberRepositoryTest.java`:
- Around line 31-69: Add an integration test in MemberRepositoryTest that
verifies soft-deleted members are excluded by findByLoginId: create and save a
MemberModel (using new LoginId(...)), mark it as deleted via the repository or
entity soft-delete method (e.g., memberRepository.delete or setting deleted flag
and saving), then call memberRepository.findByLoginId(loginId) and assert the
result is empty; also add a companion test to assert the repository/registration
flow treats a soft-deleted loginId as unavailable for
authentication/registration (i.e., signing up or authenticating with that
loginId should behave as if the account does not exist), referencing
findByLoginId, MemberModel and memberRepository so the tests locate the proper
code paths.
In `@build.gradle.kts`:
- Line 45: The build uses a non-existent Testcontainers BOM version via
mavenBom("org.testcontainers:testcontainers-bom:${project.properties[\"testcontainersVersion\"]}");
update the gradle.properties entry testcontainersVersion to a released stable
version (e.g. 1.21.3) or another version compatible with the project, then
verify resolution with ./gradlew dependencies --configuration testImplementation
and confirm the CI full build succeeds.
---
Nitpick comments:
In @.claude/hooks/tdd-notion-logger.py:
- Around line 442-466: In append_blocks_to_notion add defensive URL validation
before creating the Request: parse the target URL (built from NOTION_PAGE_ID)
with urllib.parse.urlparse and assert the scheme is "https" (and optionally that
netloc equals "api.notion.com"); if the check fails, log/write an error and
abort (raise ValueError or return) instead of proceeding to build/execute the
urllib.request.Request. This ensures append_blocks_to_notion only sends requests
over HTTPS and prevents accidental file:/ftp: schemes.
- Around line 17-19: Replace the hardcoded NOTION_PAGE_ID with a value read from
the environment and add validation in main(): read NOTION_PAGE_ID (and
NOTION_API_KEY) from os.environ (or equivalent env loader), validate they are
present/non-empty at startup, and fail fast with a clear error if missing;
update any usages that reference the constant NOTION_PAGE_ID to use the
env-backed value, leaving NOTION_API_VERSION and KST as-is, and put the
validation logic in the main() function so the process logs/raises an error
before proceeding.
- Around line 458-466: The except blocks around urllib.request.urlopen must
include richer context (timestamp, test class name, request URL/body and
traceback) to aid debugging: update the handlers for urllib.error.HTTPError and
urllib.error.URLError that reference e and e.read().decode to build and write a
detailed message including datetime.now(), the test class identifier (use the
existing variable that holds the test/class name or add a parameter like
test_class or class_name if none exists), the req.full_url or
req.get_full_url(), any request payload (decode req.data if present), the HTTP
status/body (from e.read()), and the full traceback (use
traceback.format_exc()); include similar contextual details when resp.status !=
200 (use resp.status, req URL/body and timestamp). Ensure you still preserve the
original exception handling symbols (urllib.request.urlopen, req, resp,
urllib.error.HTTPError, urllib.error.URLError, e) while replacing simple
sys.stderr.write calls with the enriched message.
In @.claude/settings.json:
- Around line 9-10: The command currently sources ~/.zshrc which can cause
interactive-shell side effects and hides errors via 2>/dev/null; change the
"command" value so it does not source ~/.zshrc — instead either source a
non-interactive env file (e.g., ~/.zshenv) or load a project .env before running
the hook, and remove the silence redirect so failures surface; update the
command that invokes .claude/hooks/tdd-notion-logger.py (the "command" key) to
explicitly export or source only needed env vars (or use a dotenv loader) and
ensure no 2>/dev/null redirection remains so errors are visible.
In
`@apps/commerce-api/src/main/java/com/loopers/application/member/MemberInfo.java`:
- Around line 9-25: from()와 fromWithMaskedName()에서 동일한 이메일 null 처리 로직이 중복되어 있으므로
중복 제거를 위해 이메일 값을 반환하는 private static 헬퍼 메서드(예: getEmailValue(MemberModel model)
또는 extractEmail(MemberModel model))를 추가하고, 현재 각 메서드에서 사용 중인 model.email() !=
null ? model.email().value() : null 구문을 해당 헬퍼 메서드 호출로 교체하세요; 참조 대상:
MemberInfo.from, MemberInfo.fromWithMaskedName, MemberModel.email(),
MemberInfo(생성자).
In `@apps/commerce-api/src/main/java/com/loopers/domain/member/Email.java`:
- Around line 15-44: Implement a safe toString() in the Email class to avoid
logging the raw PII: add an `@Override` public String toString() that does not
return the plain value field (or value()), e.g. return a masked representation
(mask the local part leaving only first/last char or return "[REDACTED EMAIL]")
so logs never contain the full email; ensure the method references the existing
value field (or value()) and does not change equals(Object) or hashCode().
In `@apps/commerce-api/src/main/java/com/loopers/domain/member/LoginId.java`:
- Around line 22-27: 현재 LoginId 생성자에서 영문/숫자 패턴만 검증하고 길이 검증이 없어 DB에러로 이어질 수 있으니
LoginId(String value) 내부에 길이 제한을 추가하세요: 클래스 레벨에 MIN_LENGTH/MAX_LENGTH 상수를 정의하고
생성자에서 value == null || value.isBlank() 체크 다음에 value.length()가 MIN_LENGTH 이상
MAX_LENGTH 이하인지 검사한 뒤 범위를 벗어나면 CoreException(ErrorType.INVALID_LOGIN_ID) 를 던지도록
하며 기존 PATTERN.matcher(value).matches() 호출은 길이 검사 이후에 실행되도록 변경하세요.
In `@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.java`:
- Around line 46-48: MemberModel currently depends on Spring Security
PasswordEncoder via the matchesPassword method; remove this direct framework
dependency by deleting matchesPassword from MemberModel and instead expose the
stored hash (e.g., getPassword or getPasswordHash) and a state-changing method
for setting/changing the hashed password (e.g., setPasswordHash or
changePasswordHash) so the entity only stores and updates hashes. Move the
responsibility for raw-password verification into the application/service layer
or a domain port (e.g., MemberService or a PasswordVerifier port) where
PasswordEncoder can be injected and used (call encoder.matches(rawPassword,
member.getPasswordHash())). Also update tests: keep pure domain/entity tests
framework-free and add service-level tests that verify encoder integration; scan
other classes in the domain package for similar PasswordEncoder usages and
refactor them the same way.
In `@apps/commerce-api/src/main/java/com/loopers/domain/member/Password.java`:
- Around line 25-36: The Password constructor currently only checks null/blank,
length, and ALLOWED_PATTERN; add a complexity check in Password(String value)
that verifies the value contains at least three of the four character classes
(uppercase, lowercase, digit, special) and throw new
CoreException(ErrorType.INVALID_PASSWORD) if the requirement is not met;
implement the check using simple boolean predicates (e.g., containsUpper,
containsLower, containsDigit, containsSpecial) based on the existing
ALLOWED_PATTERN or Character methods and count the true predicates, and
update/add unit tests to assert that weak passwords like "aaaaaaaa" or
"AAAA1111" are rejected while valid complex passwords pass.
In
`@apps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberRepositoryImpl.java`:
- Around line 10-12: Replace the generic `@Component` on the MemberRepositoryImpl
class with Spring's `@Repository` to enable exception translation for JPA
operations; specifically update the annotation on the MemberRepositoryImpl class
(remove or replace the `@Component` above public class MemberRepositoryImpl
implements MemberRepository) and add the appropriate
org.springframework.stereotype.Repository import so Spring will apply
DataAccessException translation to repository methods.
In
`@apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1ApiSpec.java`:
- Around line 13-14: Add Swagger `@Parameter` annotations for the header
parameters used by the MemberV1ApiSpec methods so the header fields show in
Swagger UI: annotate the loginId and password parameters on getMe(String
loginId, String password) and on changePassword(...) with `@Parameter`(in =
ParameterIn.HEADER, name = "loginId"/"password", description = "...", required =
true/false as appropriate) so the headers are documented; update the imports to
include io.swagger.v3.oas.annotations.Parameter and
io.swagger.v3.oas.annotations.enums.ParameterIn and ensure the method signatures
still compile.
- Around line 16-18: The method changePassword currently returns a generic
ApiResponse<Object> which makes the Swagger response schema ambiguous; update
the method signature in MemberV1ApiSpec by replacing ApiResponse<Object> with a
more specific response type (preferably ApiResponse<Void> if there is no
response body, or a dedicated DTO if you intend to return data), e.g., change
the return type for changePassword(String loginId, String password,
MemberV1Dto.ChangePasswordRequest request) to ApiResponse<Void> and adjust any
related API docs/tests to match.
In
`@apps/commerce-api/src/test/java/com/loopers/application/member/MemberFacadeTest.java`:
- Around line 94-108: The test mixes two different password values which can
confuse readers; update MemberFacadeTest so the password used in
memberAuthService.authenticate("kwonmo", ...) matches the currentPassword passed
to memberFacade.changePassword(...). Locate the authenticate stub in the test
and the memberFacade.changePassword call and use the same password string for
both the authentication step and the currentPassword argument, then keep the
verify assertion on memberPasswordService.changePassword(member,
currentPassword, "NewPass5678!") unchanged.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleModelTest.java`:
- Around line 35-63: Add missing boundary tests for ExampleModel to cover null
and empty/blank variants: create new test methods in ExampleModelTest (mirroring
throwsOnBlankTitle and throwsOnEmptyDescription) that assert CoreException is
thrown with ErrorType.BAD_REQUEST when new ExampleModel is constructed with name
== null, description == null, name == "" (empty string), and description == "
" (blank); ensure each test uses assertThrows(CoreException.class, () -> new
ExampleModel(...)) and asserts result.getErrorType() equals
ErrorType.BAD_REQUEST so null-handling and empty/blank handling in ExampleModel
are verified.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/example/ExampleServiceIntegrationTest.java`:
- Around line 29-32: Add a `@BeforeEach` setup that calls
databaseCleanUp.truncateAllTables() to guarantee a clean DB state before each
test (in addition to the existing `@AfterEach` tearDown method), and import
org.junit.jupiter.api.BeforeEach; locate the ExampleServiceIntegrationTest class
and add a setup method (e.g., setUp()) that invokes
databaseCleanUp.truncateAllTables() so each test starts from a known state.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.java`:
- Around line 39-51: Update the returnsMemberOnValidCredentials test in
MemberAuthServiceIntegrationTest to assert the additional MemberModel fields
returned by memberAuthService.authenticate; after calling
memberAuthService.authenticate("kwonmo", "Test1234!"), add assertions on
result.name(), result.birthDate() (compare to LocalDate.of(1998, 9, 16)), and
result.email() (compare to "kwonmo@example.com") in addition to the existing
loginId assertion to ensure full data integrity.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberModelTest.java`:
- Around line 23-66: Add negative tests that assert MemberModel's constructor
throws when required fields are null: create three `@Test` methods (e.g.,
createsFailsWhenLoginIdNull, createsFailsWhenNameNull,
createsFailsWhenBirthDateNull) which call new MemberModel(...) with null for
LoginId, MemberName, and birthDate respectively (keep other args valid like
encodedPassword and email) and use assertThrows(NullPointerException.class, ()
-> new MemberModel(...)) to verify the exception; reference the MemberModel
constructor and matchesPassword usage to keep the tests consistent with existing
setup.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberSignupServiceIntegrationTest.java`:
- Around line 37-116: Add an integration test that verifies signup with a null
email works: create a new test method (e.g., createsMemberWithoutEmail) that
calls memberSignupService.signup(loginId, password, name, birthDate, null) and
then asserts the returned MemberModel (MemberModel result) has a non-null id and
that result.email() is null; place this alongside the other Signup nested tests
and use the same conventions as existing tests (DisplayName, `@Test`) to ensure
coverage for the email-null signup path.
In
`@apps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.java`:
- Line 34: Remove the unused MemberJpaRepository dependency from the
MemberV1ApiE2ETest class: delete the private final MemberJpaRepository field
(and its constructor parameter or `@Autowired` injection if present) so the test
class no longer declares or injects MemberJpaRepository; ensure any imports for
MemberJpaRepository are also removed and the test compiles without that unused
dependency.
- Around line 193-211: The test returns200OnValidRequest only asserts a 2xx
status; extend it to verify the password actually changed by attempting
authentication with the new password (and optionally asserting the old password
fails). After calling the change-password endpoint in returns200OnValidRequest
(which uses signupMember() and authHeaders("kwonmo", "Test1234!")), perform an
authenticated request or token fetch using authHeaders("kwonmo", "NewPass5678!")
(or call the login/auth endpoint) and assert success (e.g., 2xx and expected
response body), and optionally try authHeaders("kwonmo", "Test1234!") and assert
it fails to further validate the change.
- Around line 122-140: Add boundary tests in MemberV1ApiE2ETest to catch
off-by-one password length bugs: create new `@Test` methods (e.g.,
returns400OnPasswordTooShort and returns400OnPasswordTooLong) that build
MemberV1Dto.SignupRequest using ENDPOINT_SIGNUP and testRestTemplate.exchange;
for the short case submit a password of length 7 (expect HttpStatus.BAD_REQUEST)
and length 8 (expect success), and for the long case submit length 17 (expect
BAD_REQUEST) and length 16 (expect success). Reuse the same
ParameterizedTypeReference<ApiResponse<Object>> responseType and assertions
pattern from the existing returns400OnInvalidLoginId test to keep behavior
consistent.
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: CHILL
Plan: Pro
Run ID: de62d0f0-64a1-4f4a-be73-33dc650d7ca4
⛔ Files ignored due to path filters (4)
.codeguide/loopers-1-week.mdis excluded by!**/*.mdand included by**CLAUDE.mdis excluded by!**/*.mdand included by**apps/commerce-api/TEST-README.mdis excluded by!**/*.mdand included by**docs/member-implementation-plan.mdis excluded by!**/*.mdand included by**
📒 Files selected for processing (43)
.claude/hooks/tdd-notion-logger.py.claude/settings.json.claude/settings.local.json.gitignoreapps/commerce-api/build.gradle.ktsapps/commerce-api/src/main/java/com/loopers/application/member/MemberFacade.javaapps/commerce-api/src/main/java/com/loopers/application/member/MemberInfo.javaapps/commerce-api/src/main/java/com/loopers/config/PasswordEncoderConfig.javaapps/commerce-api/src/main/java/com/loopers/domain/member/Email.javaapps/commerce-api/src/main/java/com/loopers/domain/member/LoginId.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberName.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberPasswordService.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberRepository.javaapps/commerce-api/src/main/java/com/loopers/domain/member/MemberSignupService.javaapps/commerce-api/src/main/java/com/loopers/domain/member/Password.javaapps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberJpaRepository.javaapps/commerce-api/src/main/java/com/loopers/infrastructure/member/MemberRepositoryImpl.javaapps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1ApiSpec.javaapps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1Controller.javaapps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1Dto.javaapps/commerce-api/src/main/java/com/loopers/support/error/ErrorType.javaapps/commerce-api/src/test/java/com/loopers/application/member/MemberFacadeTest.javaapps/commerce-api/src/test/java/com/loopers/domain/example/ExampleModelTest.javaapps/commerce-api/src/test/java/com/loopers/domain/example/ExampleServiceIntegrationTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/EmailTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/LoginIdTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberModelTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberNameTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceIntegrationTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberRepositoryTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberSignupServiceIntegrationTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/MemberSignupServiceTest.javaapps/commerce-api/src/test/java/com/loopers/domain/member/PasswordTest.javaapps/commerce-api/src/test/java/com/loopers/interfaces/api/ExampleV1ApiE2ETest.javaapps/commerce-api/src/test/java/com/loopers/interfaces/api/MemberV1ApiE2ETest.javaapps/commerce-api/src/test/java/com/loopers/support/error/CoreExceptionTest.javabuild.gradle.ktsgradle.properties
Comment on lines
+7
to
+17
| "Bash(/usr/libexec/java_home:*)", | ||
| "Bash(JAVA_HOME=/Users/praesentia/Library/Java/JavaVirtualMachines/azul-21.0.7/Contents/Home ./gradlew build:*)", | ||
| "Bash(JAVA_HOME=/Users/praesentia/Library/Java/JavaVirtualMachines/azul-21.0.7/Contents/Home ./gradlew:*)", | ||
| "Bash(docker info:*)", | ||
| "Bash(docker context inspect:*)", | ||
| "Bash(docker run:*)", | ||
| "Bash(docker context:*)", | ||
| "Bash(JAVA_HOME=/Users/praesentia/Library/Java/JavaVirtualMachines/azul-21.0.7/Contents/Home DOCKER_HOST=unix:///Users/praesentia/.docker/run/docker.sock ./gradlew:*)", | ||
| "Bash(~/.testcontainers.properties)", | ||
| "Bash(curl:*)", | ||
| "Bash(JAVA_HOME=/Users/praesentia/Library/Java/JavaVirtualMachines/azul-21.0.7/Contents/Home TESTCONTAINERS_DOCKER_SOCKET_OVERRIDE=/var/run/docker.sock ./gradlew:*)", |
There was a problem hiding this comment.
🧩 Analysis chain
🏁 Script executed:
#!/bin/bash
# .gitignore에 settings.local.json이 포함되어 있는지 확인
grep -n "settings.local.json" .gitignore || echo "settings.local.json is NOT in .gitignore"Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 125
🏁 Script executed:
#!/bin/bash
# 1. .claude 디렉토리 내용 확인
echo "=== .claude directory contents ==="
ls -la .claude/
# 2. .gitignore에서 .claude 관련 패턴 확인
echo -e "\n=== .claude patterns in .gitignore ==="
grep -E "\.claude|settings" .gitignore || echo "No .claude or settings patterns found"
# 3. settings.local.json이 git에 추적되는지 확인
echo -e "\n=== Git tracking status ==="
git ls-files | grep settings.local.json || echo "Not in git index"
# 4. .gitignore 전체 내용 (크기 확인)
echo -e "\n=== .gitignore line count ==="
wc -l .gitignoreRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 601
🏁 Script executed:
#!/bin/bash
# .gitignore 전체 내용 확인
echo "=== Full .gitignore content ==="
cat -n .gitignore
# settings.json과 settings.local.json 내용 비교
echo -e "\n=== settings.json (첫 10줄) ==="
head -10 .claude/settings.json
echo -e "\n=== settings.local.json (첫 10줄) ==="
head -10 .claude/settings.local.json
# git에 커밋된 상태 확인
echo -e "\n=== Git commit history for settings.local.json ==="
git log --oneline -- .claude/settings.local.json | head -5Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1061
.claude/settings.local.json이 개발자 머신 특화 경로와 함께 저장소에 커밋되어 있어 다른 개발자 환경에서 작동하지 않는다.
현재 이 파일은 git에 추적되고 있으며, /Users/praesentia/Library/Java/JavaVirtualMachines/azul-21.0.7 같은 하드코딩된 로컬 경로를 포함하고 있다. 다른 개발자가 리포지토리를 클론했을 때 이 설정을 적용할 수 없어 개발 환경 구성이 실패한다. .claude/settings.local.json은 개발자별 로컬 오버라이드 설정으로 설계된 것으로 보이므로 공유 저장소에 저장되어서는 안 된다.
필수 수정사항:
.gitignore에.claude/settings.local.json을 추가하여 향후 개인별 설정이 커밋되지 않도록 한다.- 기존 커밋에서 제거하고자 하면
git rm --cached .claude/settings.local.json실행 후 커밋한다. - 환경 변수(
$JAVA_HOME,$DOCKER_HOST등)를 직접 활용하거나 설정 템플릿(settings.local.json.example)을 제공하는 방식으로 변경한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In @.claude/settings.local.json around lines 7 - 17, The file
.claude/settings.local.json contains machine-specific paths and should not be
tracked; add ".claude/settings.local.json" to .gitignore, remove the tracked
file with git rm --cached .claude/settings.local.json and commit that change,
and replace the committed content with a repository-safe alternative by creating
a template (e.g., settings.local.json.example) that documents using environment
variables like $JAVA_HOME and $DOCKER_HOST or explains how to populate local
overrides so developers copy it into their own untracked
.claude/settings.local.json.
| .gradle | ||
| .DS_Store | ||
| .idea/ | ||
| build/ |
There was a problem hiding this comment.
build/ 패턴 범위를 다시 제한하는 편이 안전하다.
현재 build/는 저장소 전역의 모든 build 디렉터리를 무시한다. 운영 관점에서는 src/main/**/build 또는 src/test/**/build 같은 정상 소스 경로가 생겼을 때 git status에 나타나지 않아 코드 누락 상태로 배포·CI가 진행될 수 있어 추적이 어렵다. 루트/모듈 산출물만 제외하려는 의도라면 기존 예외 패턴을 유지하거나, 필요한 위치만 명시적으로 무시하는 방식으로 범위를 좁히는 편이 안전하다.
수정 예시
.DS_Store
.idea/
build/
.gradle/
+!**/src/main/**/build/
+!**/src/test/**/build/추가 테스트로는 src/main/java/.../build/Example.java 같은 경로에 더미 파일을 만든 뒤 git check-ignore -v <path> 결과가 무시되지 않는지 확인하는 테스트를 권장한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In @.gitignore at line 3, .gitignore currently ignores any directory named
"build" across the repo which is too broad; update the ignore rules to scope to
the repository root and/or explicit module outputs by replacing the global
"build/" pattern with a root-anchored pattern such as "/build/" and/or explicit
module output paths (e.g., "module-name/build/" or "*/target/build/" as
appropriate) and retain or add negate rules if you need to allow specific source
build folders; after editing, verify with git check-ignore -v <path> (e.g.,
src/main/.../build/Example.java) to confirm those source paths are no longer
ignored.
Comment on lines
+17
to
+26
| @Transactional(readOnly = true) | ||
| public MemberModel authenticate(String loginId, String password) { | ||
| MemberModel member = memberRepository.findByLoginId(loginId) | ||
| .orElseThrow(() -> new CoreException(ErrorType.MEMBER_NOT_FOUND)); | ||
|
|
||
| if (!member.matchesPassword(password, passwordEncoder)) { | ||
| throw new CoreException(ErrorType.AUTHENTICATION_FAILED); | ||
| } | ||
| return member; | ||
| } |
There was a problem hiding this comment.
🧩 Analysis chain
🌐 Web query:
OWASP user enumeration attack prevention best practices
💡 Result:
OWASP-aligned best practices to prevent user (account) enumeration
- Use generic, uniform messages for all outcomes across login, registration, password/credential recovery, and APIs (e.g., always “Invalid username or password” / “If an account exists, we’ll email you”). Avoid “user not found”, “account locked”, “email already registered”, etc. [1][2]
- Keep responses indistinguishable: same HTTP status, response body size/structure, and avoid different redirects for “user exists” vs “doesn’t exist”. [3]
- Mitigate timing side-channels: make authentication and recovery paths return in constant time (or otherwise ensure response times don’t reliably differ based on account existence). [2][3]
- Rate-limit and add anti-automation controls on login, registration, and recovery endpoints (progressive delays, throttling, CAPTCHA/bot detection where appropriate) to make enumeration impractical at scale. (OWASP discusses hardening these pathways and testing for response differences/timing.) [1][3]
- Password reset (“forgot password”) specifics:
- Don’t reveal whether the username/email exists; show a generic response. [2]
- Don’t allow “forgot password” to be abused for account lockout/DoS (OWASP explicitly warns against locking accounts due to forgot-password attempts). [2]
- Reduce the value of enumeration: enforce MFA (OWASP recommends it broadly to reduce account takeover even if attackers identify valid accounts). [1][2]
- Monitor and alert on suspicious patterns (high-volume attempts, sequential usernames, repeated recovery requests) and investigate. (OWASP WSTG highlights enumeration via response differences and timing—logging helps detect it operationally.) [3]
Sources: OWASP Top 10:2025 Authentication Failures guidance on hardening registration/recovery against enumeration [1]; OWASP Authentication Cheat Sheet (generic errors, constant-time) [2]; OWASP Forgot Password Cheat Sheet (enumeration risk, don’t lock accounts) [2]; OWASP WSTG “Testing for Account Enumeration…” (same message/length; consider timing) [3].
🏁 Script executed:
# Verify if password comparison is constant-time and check error handling
cd /root/repo && find . -name "*.java" -path "**/member/**" | head -20Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 145
🏁 Script executed:
# Find the MemberAuthService file and examine password comparison
find . -name "MemberAuthService.java" -type fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 167
🏁 Script executed:
# Examine the full MemberAuthService file and related password handling
cat -n ./apps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1232
🏁 Script executed:
# Find MemberModel to verify password comparison implementation
find . -name "MemberModel.java" -type fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 161
🏁 Script executed:
# Examine MemberModel to check password comparison implementation
cat -n ./apps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 2130
🏁 Script executed:
# Check if there's any rate-limiting or error handling middleware
find . -name "*Controller.java" -o -name "*Filter.java" -o -name "*Interceptor.java" | grep -i member | head -10Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 176
🏁 Script executed:
# Examine the controller to see how CoreException errors are exposed
cat -n ./apps/commerce-api/src/main/java/com/loopers/interfaces/api/member/MemberV1Controller.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 2548
🏁 Script executed:
# Find error handling configuration to see how CoreException errors are exposed
find . -name "*ExceptionHandler.java" -o -name "*ControllerAdvice.java" -o -name "*ErrorHandler.java" | head -5Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 170
🏁 Script executed:
# Examine error handler to see how errors are exposed
cat -n ./apps/commerce-api/src/main/java/com/loopers/interfaces/api/ApiControllerAdvice.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 6820
🏁 Script executed:
# Find ErrorType to see the exposed error codes and messages
find . -name "ErrorType.java" -type fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 159
🏁 Script executed:
# Examine ErrorType to see the error codes and messages
cat -n ./apps/commerce-api/src/main/java/com/loopers/support/error/ErrorType.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 2078
통합 인증 실패 응답으로 사용자 열거 공격 방지
현재 코드는 MEMBER_NOT_FOUND와 AUTHENTICATION_FAILED 두 가지 다른 에러 코드와 메시지를 반환한다. HTTP 상태 코드는 동일하지만(401 UNAUTHORIZED), 에러 메시지가 "회원을 찾을 수 없습니다"와 "비밀번호가 일치하지 않습니다"로 구분되므로 공격자가 유효한 loginId를 식별할 수 있다.
OWASP 인증 체크리스트에 따르면 로그인 실패 원인에 관계없이 동일한 에러 메시지를 반환해야 한다. 다음과 같이 수정하길 권장한다:
MEMBER_NOT_FOUND와AUTHENTICATION_FAILED모두 동일한 에러 타입(예:AUTHENTICATION_FAILED)으로 통일- 에러 메시지를 "인증에 실패했습니다"로 통합
- 로그인 엔드포인트에 속도 제한(rate-limiting)을 적용하여 대규모 열거 공격을 방어
- 추가로 다중 인증(MFA) 도입을 검토하여 계정 탈취 위험 감소
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.java`
around lines 17 - 26, Change authenticate so it never reveals whether loginId
exists: in MemberAuthService.authenticate, replace the distinct
CoreException(ErrorType.MEMBER_NOT_FOUND) and
CoreException(ErrorType.AUTHENTICATION_FAILED) flows with a single failure path
that always throws CoreException(ErrorType.AUTHENTICATION_FAILED) with a unified
message like "인증에 실패했습니다" when either memberRepository.findByLoginId(loginId)
yields empty or member.matchesPassword(password, passwordEncoder) returns false;
keep MemberModel return on success. Also ensure the login controller/endpoint
has rate-limiting applied and flag the route for future MFA integration to
further reduce enumeration/account-takeover risk.
Comment on lines
+17
to
+31
| @Transactional | ||
| public void changePassword(MemberModel member, String currentPassword, String newRawPassword) { | ||
| if (!member.matchesPassword(currentPassword, passwordEncoder)) { | ||
| throw new CoreException(ErrorType.PASSWORD_MISMATCH); | ||
| } | ||
|
|
||
| Password newPassword = new Password(newRawPassword); | ||
|
|
||
| if (member.matchesPassword(newRawPassword, passwordEncoder)) { | ||
| throw new CoreException(ErrorType.PASSWORD_SAME_AS_OLD); | ||
| } | ||
| newPassword.validateAgainst(member.birthDate()); | ||
|
|
||
| member.changePassword(passwordEncoder.encode(newRawPassword)); | ||
| memberRepository.save(member); |
There was a problem hiding this comment.
🧩 Analysis chain
🏁 Script executed:
fd MemberPasswordService.java -t fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 169
🏁 Script executed:
fd MemberModel.java -t fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 159
🏁 Script executed:
rg "changePassword" --type java -B 3 -A 3Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 16645
🏁 Script executed:
cat -n apps/commerce-api/src/main/java/com/loopers/domain/member/MemberPasswordService.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1502
🏁 Script executed:
cat -n apps/commerce-api/src/main/java/com/loopers/application/member/MemberFacade.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1755
🏁 Script executed:
cat -n apps/commerce-api/src/main/java/com/loopers/domain/member/MemberModel.java | head -80Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 2130
🏁 Script executed:
cat -n apps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.java | head -50Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1232
🏁 Script executed:
rg "@Transactional" apps/commerce-api/src/main/java/com/loopers/domain/member/MemberAuthService.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 120
🏁 Script executed:
cat apps/commerce-api/src/main/java/com/loopers/domain/BaseEntity.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 183
🏁 Script executed:
fd BaseEntity.java -t fRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 145
🏁 Script executed:
rg "@Version" apps/commerce-api/src/main/java/com/loopers/domain/ --type javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 67
🏁 Script executed:
cat -n modules/jpa/src/main/java/com/loopers/domain/BaseEntity.javaRepository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 2291
트랜잭션 경계가 분산되어 동시 비밀번호 변경 시 마지막 쓰기가 이전 변경을 덮어쓴다.
MemberFacade.changePassword()에서 authenticate() 호출이 완료된 후 memberPasswordService.changePassword()를 별도의 트랜잭션에서 실행한다. 이 사이에 로드된 MemberModel 인스턴스는 detach 상태가 되므로, 동일 회원에 대한 동시 비밀번호 변경 요청이 발생하면 각각 같은 비밀번호 상태를 기준으로 검증한 후 저장할 수 있다. 두 번째 저장이 첫 번째 변경을 덮어쓰게 되며, JPA의 낙관적 잠금(@Version)이 없어서 충돌을 감지하지 못한다.
개선 방안:
MemberFacade에@Transactional을 적용하여authenticate()부터changePassword()까지를 하나의 트랜잭션으로 묶거나,memberPasswordService.changePassword()를memberId기반으로 재조회하는 구조로 변경하거나,MemberModel에@Version필드를 추가하여 OptimisticLockException으로 충돌을 명시적으로 드러낸다.
동시에 두 개의 비밀번호 변경 요청이 발생했을 때 한 요청이 충돌로 실패하는 통합 테스트를 추가한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberPasswordService.java`
around lines 17 - 31, The transaction boundary allows detached MemberModel
updates to overwrite concurrent changes; to fix, ensure changePassword runs with
fresh, managed state or optimistic locking: either make
MemberFacade.changePassword() `@Transactional` so authenticate() and
memberPasswordService.changePassword(...) execute in one transaction, or modify
MemberPasswordService.changePassword(...) to accept a memberId and re-retrieve
the MemberModel from memberRepository (e.g., findById) inside its transaction
before validation and save, or add a `@Version` field to MemberModel to enable
optimistic locking and surface conflicts as OptimisticLockException; also add an
integration test that fires two concurrent changePassword requests and asserts
one fails with a conflict.
Comment on lines
+27
to
+33
| memberRepository.findByLoginId(loginId).ifPresent(m -> { | ||
| throw new CoreException(ErrorType.DUPLICATE_LOGIN_ID); | ||
| }); | ||
|
|
||
| String encodedPassword = passwordEncoder.encode(rawPassword); | ||
| MemberModel member = new MemberModel(loginIdVo, encodedPassword, nameVo, birthDate, emailVo); | ||
| return memberRepository.save(member); |
There was a problem hiding this comment.
중복 loginId 검사가 저장 시점까지 보장되지 않는다.
현재 흐름은 조회와 저장이 분리되어 있어 동일한 loginId로 동시 가입이 들어오면 둘 다 선행 조회를 통과할 수 있다. 이 경우 DB unique constraint가 없으면 중복 회원이 저장되고, 있어도 save에서 올라온 무결성 예외가 DUPLICATE_LOGIN_ID로 변환되지 않으면 500으로 노출된다. 저장 시점의 무결성 예외를 도메인 예외로 매핑하고 cause를 보존해야 하며, 동일 loginId 동시 가입 또는 save 무결성 예외 경로를 검증하는 테스트를 추가해야 한다.
As per coding guidelines, **/*.java: 예외 처리 시 cause를 보존하고, 사용자 메시지와 로그 메시지를 분리하도록 제안한다. **/*Service*.java: 멱등성과 중복 처리 방지 전략을 점검한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/main/java/com/loopers/domain/member/MemberSignupService.java`
around lines 27 - 33, The current duplicate loginId check in MemberSignupService
is racy because findByLoginId(...) is separate from memberRepository.save(...);
modify MemberSignupService to catch persistence-level integrity exceptions
thrown by memberRepository.save(member) (e.g., DataIntegrityViolationException
or PersistenceException), map them to
CoreException(ErrorType.DUPLICATE_LOGIN_ID) while preserving the original
exception as the cause, and log the detailed error separately from the
user-facing message; additionally add tests that assert (1) concurrent signups
with identical loginId result in one success and the other mapped to
DUPLICATE_LOGIN_ID, and (2) a save-path integrity exception is translated to the
domain exception (use MemberSignupService and memberRepository.save to locate
code to change and CoreException/ErrorType to construct the mapped exception).
Comment on lines
+68
to
+77
| @DisplayName("존재하지 않는 loginId면 MEMBER_NOT_FOUND 예외가 발생한다") | ||
| @Test | ||
| void throwsOnNonExistentLoginId() { | ||
| // given & when | ||
| CoreException result = assertThrows(CoreException.class, () -> | ||
| memberAuthService.authenticate("nobody", "Test1234!")); | ||
|
|
||
| // then | ||
| assertThat(result.getErrorType()).isEqualTo(ErrorType.MEMBER_NOT_FOUND); | ||
| } |
There was a problem hiding this comment.
🧩 Analysis chain
🏁 Script executed:
#!/bin/bash
# Description: MemberAuthService에서 MEMBER_NOT_FOUND가 어떻게 처리되는지 확인
# MemberAuthService 구현 확인
fd -t f "MemberAuthService.java" --exec cat {}Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1043
🏁 Script executed:
#!/bin/bash
# ErrorType 정의 확인
fd -t f "ErrorType.java" --exec cat {}Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 1854
🏁 Script executed:
#!/bin/bash
# 예외 처리가 HTTP 응답으로 변환되는 방식 확인
fd -t f -e "java" | xargs rg "ErrorType\.(MEMBER_NOT_FOUND|AUTHENTICATION_FAILED)" -B 2 -A 2 | head -100Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 3498
🏁 Script executed:
#!/bin/bash
# MemberAuthService 사용처 확인
rg "memberAuthService\.authenticate|MemberAuthService" -t java | head -30Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 3330
인증 실패 응답에서 사용자 열거 공격이 가능하다.
MEMBER_NOT_FOUND (메시지: "회원을 찾을 수 없습니다")와 AUTHENTICATION_FAILED (메시지: "비밀번호가 일치하지 않습니다")가 다른 메시지를 반환하므로, 공격자는 API 응답의 code 필드나 message 필드를 통해 유효한 loginId를 식별할 수 있다. HTTP 상태 코드는 동일하지만 에러 메시지로 구분이 가능하여 보안 위험이 존재한다.
보안 개선안:
- 존재하지 않는 사용자와 비밀번호 오류 모두 동일한 ErrorType (예:
AUTHENTICATION_FAILED)을 반환한다. - 내부 로깅에서는 MEMBER_NOT_FOUND를 별도로 기록하여 사용자 열거 시도 모니터링을 유지한다.
- 수정 후 테스트를 추가하여 두 경우 모두 동일한 에러 응답을 반환하는지 검증한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberAuthServiceIntegrationTest.java`
around lines 68 - 77, The test and service currently reveal distinct error types
for non-existent loginId (ErrorType.MEMBER_NOT_FOUND) and wrong password
(ErrorType.AUTHENTICATION_FAILED), enabling user-enumeration; change
MemberAuthService.authenticate to always throw the same public ErrorType (e.g.,
ErrorType.AUTHENTICATION_FAILED) for both "user not found" and "bad password"
cases while retaining detailed MEMBER_NOT_FOUND in internal logs, then update
the integration test MemberAuthServiceIntegrationTest (method
throwsOnNonExistentLoginId) and add/adjust the wrong-password test to assert the
unified ErrorType is returned for both scenarios.
Comment on lines
+42
to
+55
| @DisplayName("올바른 현재 비밀번호와 유효한 새 비밀번호면 변경에 성공한다") | ||
| @Test | ||
| void changesPasswordSuccessfully() { | ||
| // given | ||
| MemberModel member = memberSignupService.signup("kwonmo", "Test1234!", | ||
| "양권모", LocalDate.of(1998, 9, 16), "kwonmo@example.com"); | ||
|
|
||
| // when | ||
| memberPasswordService.changePassword(member, "Test1234!", "NewPass5678!"); | ||
|
|
||
| // then | ||
| MemberModel updated = memberAuthService.authenticate("kwonmo", "NewPass5678!"); | ||
| assertThat(updated.loginId().value()).isEqualTo("kwonmo"); | ||
| } |
There was a problem hiding this comment.
비밀번호 변경 성공 테스트에 기존 비밀번호 무효화 검증이 빠져 있다.
운영에서는 비밀번호 변경 직후에도 예전 비밀번호로 인증되면 계정 탈취 대응이 되지 않는다. 지금 테스트는 새 비밀번호 로그인만 확인해서, 변경 로직이 부분 적용되거나 이전 자격 증명이 계속 유효한 회귀를 놓칠 수 있다. 성공 케이스의 then 절에서 기존 비밀번호 인증이 PASSWORD_MISMATCH로 실패하는지까지 함께 검증하는 편이 안전하다. 추가로 통합 테스트 이름이나 시나리오에도 "새 비밀번호만 성공한다"는 의도를 드러내 두는 것이 좋다. As per coding guidelines, "Java 테스트 리뷰 기준이다. 단위 테스트는 경계값/실패 케이스/예외 흐름을 포함하는지 점검한다. 통합 테스트는 격리 수준, 플래키 가능성, 테스트 데이터 준비/정리 전략을 점검한다."
수정 예시
// then
MemberModel updated = memberAuthService.authenticate("kwonmo", "NewPass5678!");
assertThat(updated.loginId().value()).isEqualTo("kwonmo");
+ CoreException result = assertThrows(CoreException.class, () ->
+ memberAuthService.authenticate("kwonmo", "Test1234!"));
+ assertThat(result.getErrorType()).isEqualTo(ErrorType.PASSWORD_MISMATCH);📝 Committable suggestion
‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.
Suggested change
| @DisplayName("올바른 현재 비밀번호와 유효한 새 비밀번호면 변경에 성공한다") | |
| @Test | |
| void changesPasswordSuccessfully() { | |
| // given | |
| MemberModel member = memberSignupService.signup("kwonmo", "Test1234!", | |
| "양권모", LocalDate.of(1998, 9, 16), "kwonmo@example.com"); | |
| // when | |
| memberPasswordService.changePassword(member, "Test1234!", "NewPass5678!"); | |
| // then | |
| MemberModel updated = memberAuthService.authenticate("kwonmo", "NewPass5678!"); | |
| assertThat(updated.loginId().value()).isEqualTo("kwonmo"); | |
| } | |
| `@DisplayName`("올바른 현재 비밀번호와 유효한 새 비밀번호면 변경에 성공한다") | |
| `@Test` | |
| void changesPasswordSuccessfully() { | |
| // given | |
| MemberModel member = memberSignupService.signup("kwonmo", "Test1234!", | |
| "양권모", LocalDate.of(1998, 9, 16), "kwonmo@example.com"); | |
| // when | |
| memberPasswordService.changePassword(member, "Test1234!", "NewPass5678!"); | |
| // then | |
| MemberModel updated = memberAuthService.authenticate("kwonmo", "NewPass5678!"); | |
| assertThat(updated.loginId().value()).isEqualTo("kwonmo"); | |
| CoreException result = assertThrows(CoreException.class, () -> | |
| memberAuthService.authenticate("kwonmo", "Test1234!")); | |
| assertThat(result.getErrorType()).isEqualTo(ErrorType.PASSWORD_MISMATCH); | |
| } |
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceIntegrationTest.java`
around lines 42 - 55, Update the changesPasswordSuccessfully test in
MemberPasswordServiceIntegrationTest to assert that the old password is no
longer valid: after calling memberPasswordService.changePassword(member,
"Test1234!", "NewPass5678!"), attempt to authenticate with the old password via
memberAuthService.authenticate("kwonmo", "Test1234!") and assert it fails with
the expected failure code (e.g., PASSWORD_MISMATCH or the domain-specific
exception/result your auth layer returns); also rename the test method/display
name to reflect the intent (e.g.,
"changesPasswordSoOnlyNewPasswordAuthenticates") so it clearly documents that
only the new password should succeed.
Comment on lines
+104
to
+121
| @DisplayName("새 비밀번호가 규칙에 맞지 않으면 INVALID_PASSWORD 예외를 던진다") | ||
| @Test | ||
| void throwsOnInvalidNewPassword() { | ||
| // given | ||
| MemberModel member = new MemberModel( | ||
| new LoginId("kwonmo"), "currentEncoded", new MemberName("양권모"), | ||
| LocalDate.of(1998, 9, 16), new Email("kwonmo@example.com")); | ||
|
|
||
| when(passwordEncoder.matches("Current1234!", "currentEncoded")).thenReturn(true); | ||
|
|
||
| // when | ||
| CoreException result = assertThrows(CoreException.class, () -> | ||
| memberPasswordService.changePassword(member, "Current1234!", "short")); | ||
|
|
||
| // then | ||
| assertThat(result.getErrorType()).isEqualTo(ErrorType.INVALID_PASSWORD); | ||
| verify(memberRepository, never()).save(any()); | ||
| } |
There was a problem hiding this comment.
생년월일 포함 비밀번호 실패 경로가 테스트되지 않는다.
현재 실패 케이스는 길이/형식 위반만 확인해서 validateAgainst(member.birthDate()) 분기가 빠져도 테스트가 모두 통과한다. 이 규칙이 빠지면 생년월일을 포함한 약한 비밀번호가 저장되어 보안 사고로 이어질 수 있다. 형식은 통과하지만 생년월일을 포함하는 비밀번호로 도메인 예외와 save 미호출을 검증하는 테스트를 추가해야 한다.
As per coding guidelines, **/*Test*.java: 단위 테스트는 경계값/실패 케이스/예외 흐름을 포함하는지 점검한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberPasswordServiceTest.java`
around lines 104 - 121, Add a new unit test in MemberPasswordServiceTest that
covers the birthdate-in-password failure branch: create a MemberModel with a
known birthDate (e.g., LocalDate.of(1998,9,16)), mock
passwordEncoder.matches("Current1234!", "currentEncoded") to return true, then
call memberPasswordService.changePassword(member, "Current1234!",
"<password-containing-19980916-or-19980916>") (e.g., "Pass19980916!"); assert
that a CoreException is thrown with ErrorType.INVALID_PASSWORD and
verify(memberRepository, never()).save(any()); this ensures the
validateAgainst(member.birthDate()) path is exercised and prevents saving weak
passwords containing the member's birth date.
Comment on lines
+31
to
+69
| @DisplayName("loginId로 회원 조회") | ||
| @Nested | ||
| class FindByLoginId { | ||
|
|
||
| @DisplayName("존재하지 않는 loginId면 빈 Optional을 반환한다") | ||
| @Test | ||
| void returnsEmptyForNonExistentLoginId() { | ||
| // given | ||
| String loginId = "nonexistent"; | ||
|
|
||
| // when | ||
| Optional<MemberModel> result = memberRepository.findByLoginId(loginId); | ||
|
|
||
| // then | ||
| assertThat(result).isEmpty(); | ||
| } | ||
|
|
||
| @DisplayName("존재하는 loginId면 저장된 회원을 반환한다") | ||
| @Test | ||
| void returnsMemberForExistingLoginId() { | ||
| // given | ||
| MemberModel member = new MemberModel( | ||
| new LoginId("kwonmo"), "Test1234!", new MemberName("양권모"), | ||
| LocalDate.of(1998, 9, 16), new Email("kwonmo@example.com")); | ||
| memberRepository.save(member); | ||
|
|
||
| // when | ||
| Optional<MemberModel> result = memberRepository.findByLoginId("kwonmo"); | ||
|
|
||
| // then | ||
| assertThat(result).isPresent(); | ||
| assertAll( | ||
| () -> assertThat(result.get().loginId().value()).isEqualTo("kwonmo"), | ||
| () -> assertThat(result.get().name().value()).isEqualTo("양권모"), | ||
| () -> assertThat(result.get().birthDate()).isEqualTo(LocalDate.of(1998, 9, 16)), | ||
| () -> assertThat(result.get().email().value()).isEqualTo("kwonmo@example.com") | ||
| ); | ||
| } | ||
| } |
There was a problem hiding this comment.
soft-delete 조회 경계가 통합 테스트에 없다.
이번 변경 범위에 soft-delete 지원이 포함되는데, findByLoginId가 삭제된 회원을 제외하는지 확인하는 케이스가 없다. 이 경계가 빠지면 탈퇴 계정이 다시 인증되거나, 삭제된 데이터 때문에 가입 정책이 잘못 적용되는 문제가 운영에서 바로 드러난다. 삭제 후 조회가 비어 있는지와 삭제 회원이 가입/인증 흐름에서 어떻게 취급돼야 하는지를 명시한 통합 테스트를 보강하는 편이 안전하다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In
`@apps/commerce-api/src/test/java/com/loopers/domain/member/MemberRepositoryTest.java`
around lines 31 - 69, Add an integration test in MemberRepositoryTest that
verifies soft-deleted members are excluded by findByLoginId: create and save a
MemberModel (using new LoginId(...)), mark it as deleted via the repository or
entity soft-delete method (e.g., memberRepository.delete or setting deleted flag
and saving), then call memberRepository.findByLoginId(loginId) and assert the
result is empty; also add a companion test to assert the repository/registration
flow treats a soft-deleted loginId as unavailable for
authentication/registration (i.e., signing up or authenticating with that
loginId should behave as if the account does not exist), referencing
findByLoginId, MemberModel and memberRepository so the tests locate the proper
code paths.
| dependencyManagement { | ||
| imports { | ||
| mavenBom("org.springframework.cloud:spring-cloud-dependencies:${project.properties["springCloudDependenciesVersion"]}") | ||
| mavenBom("org.testcontainers:testcontainers-bom:${project.properties["testcontainersVersion"]}") |
There was a problem hiding this comment.
🧩 Analysis chain
🏁 Script executed:
#!/bin/bash
# Description: Testcontainers BOM 버전 2.0.2 존재 여부 확인
# Maven Central에서 testcontainers-bom 버전 조회
curl -s "https://search.maven.org/solrsearch/select?q=g:org.testcontainers+AND+a:testcontainers-bom&rows=5&wt=json" | jq '.response.docs[0].latestVersion'
# gradle.properties에서 실제 설정된 버전 확인
cat gradle.properties 2>/dev/null | grep testcontainersVersion || echo "gradle.properties not found or no testcontainersVersion property"Repository: Loopers-dev-lab/loop-pack-be-l2-vol3-java
Length of output: 121
Testcontainers BOM 버전 2.0.2는 존재하지 않으며 빌드 실패를 초래한다.
Maven Central 저장소에 따르면 testcontainers-bom의 최신 안정 버전은 1.21.3이다. gradle.properties에 설정된 2.0.2 버전은 릴리스되지 않았으므로 의존성 해석 단계에서 빌드가 실패한다.
수정안: gradle.properties의 testcontainersVersion을 1.21.3으로 변경하거나 현재 사용 중인 프로젝트에 호환되는 안정 버전을 사용하도록 수정한다.
테스트: 변경 후 ./gradlew dependencies --configuration testImplementation 명령으로 testcontainers-bom이 올바르게 해석되는지 확인하고, CI 파이프라인에서 전체 빌드가 성공하는지 검증한다.
🤖 Prompt for AI Agents
Verify each finding against the current code and only fix it if needed.
In `@build.gradle.kts` at line 45, The build uses a non-existent Testcontainers
BOM version via
mavenBom("org.testcontainers:testcontainers-bom:${project.properties[\"testcontainersVersion\"]}");
update the gradle.properties entry testcontainersVersion to a released stable
version (e.g. 1.21.3) or another version compatible with the project, then
verify resolution with ./gradlew dependencies --configuration testImplementation
and confirm the CI full build succeeds.
Praesentia-YKM
merged commit 9b45a9a
into
Loopers-dev-lab:Praesentia-YKM
1 check passed
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
📌 Summary
배경:
목표:
결과:
💬 리뷰 희망 부분
1. Value Object 설계 — String vs VO, 어디까지 감쌀 것인가
배경 및 문제 상황
loginId에 특수문자가 들어오거나,email에 잘못된 형식이 들어와도 엔티티 생성 시점에는 알 수 없음해결 방안
@EmbeddableVO로 캡슐화하여 생성자에서 검증구현 세부사항
CoreException을 던짐@Embeddable+@AttributeOverride로 DB 컬럼 매핑고민한 점
2. Password 처리 전략 — 검증용 VO와 저장용 String의 분리
배경 및 문제 상황
@Embeddable로 만들면 자연스러울 것 같지만, DB에는 BCrypt 인코딩된 값이 저장됨해결 방안
String으로 저장Password.of(rawPw, birthDate)new Password(newRawPw)→validateAgainst(birthDate)관련 코드
고민한 점
3. 도메인 서비스 분리 — 단일 서비스 vs 기능별 분리
배경 및 문제 상황
MemberService에 모든 로직을 넣으면 클래스가 비대해지고, 의존성이 혼재됨PasswordEncoder만 필요, 인증은PasswordEncoder+ 조회, 비밀번호 변경은 전부 필요해결 방안
MemberFacade가 오케스트레이션MemberSignupServiceMemberAuthServiceMemberPasswordService관련 코드
고민한 점
MemberAuthService만 수정하면 됨4. 비밀번호 변경 검증 순서
배경 및 문제 상황
해결 방안
new Password(newRawPw)) → 형식이 틀리면 이후 검증 불필요validateAgainst) → 최종 정책 검증관련 코드
고민한 점
Password.of()를 사용하지 않은 이유는,of()는 형식+생년월일을 한 번에 검증하지만 여기서는 그 사이에 동일 PW 체크가 끼어야 해서 분리PASSWORD_MISMATCH/INVALID_PASSWORD/PASSWORD_SAME_AS_OLD/PASSWORD_CONTAINS_BIRTH_DATE)하여 클라이언트가 어떤 검증에서 실패했는지 정확히 알 수 있도록 했는데, 반대로INVALID_PASSWORD하나로 통합하면 비밀번호 정책 내부 구현을 숨길 수 있는 장점도 있음. 이 수준의 에러코드 세분화가 적절한지 의견 부탁드립니다🏗️ 변경점
신규 추가:
MemberModelLoginId,Email,MemberNamePasswordMemberSignupServiceMemberAuthServiceMemberPasswordServiceMemberRepositoryMemberFacadeMemberInfoMemberV1ControllerMemberV1DtoMemberV1ApiSpecMemberRepositoryImplMemberJpaRepositoryPasswordEncoderConfig제거/대체:
🔁 Flow Diagram
1. POST /api/v1/members (회원가입)
sequenceDiagram participant Client participant Controller as MemberV1Controller participant Facade as MemberFacade participant SignupSvc as MemberSignupService participant Repository as MemberRepository Client->>Controller: POST /api/v1/members<br/>Body: {loginId, password, name, birthDate, email} Controller->>Facade: signup(loginId, password, name, birthDate, email) Facade->>SignupSvc: signup(loginId, rawPassword, name, birthDate, email) Note over SignupSvc: Value Object 생성 (자동 검증)<br/>LoginId(loginId) - 영문+숫자 검증<br/>MemberName(name) - 빈값 검증<br/>Email(email) - 형식 검증<br/>Password.of(rawPw, birthDate) - 길이/문자/생년월일 검증 alt VO 검증 실패 SignupSvc-->>Client: CoreException (INVALID_LOGIN_ID / INVALID_PASSWORD / ...) else 검증 통과 SignupSvc->>Repository: findByLoginId(loginId) alt loginId 중복 SignupSvc-->>Client: CoreException (DUPLICATE_LOGIN_ID) else 중복 아님 SignupSvc->>SignupSvc: passwordEncoder.encode(rawPassword) SignupSvc->>SignupSvc: new MemberModel(loginIdVo, encodedPw, nameVo, birthDate, emailVo) SignupSvc->>Repository: save(memberModel) Repository-->>SignupSvc: MemberModel SignupSvc-->>Facade: MemberModel Facade->>Facade: MemberInfo.from(member) Facade-->>Controller: MemberInfo Controller-->>Client: ApiResponse {loginId, name, birthDate, email} end end2. GET /api/v1/members/me (내 정보 조회)
sequenceDiagram participant Client participant Controller as MemberV1Controller participant Facade as MemberFacade participant AuthSvc as MemberAuthService participant Repository as MemberRepository Client->>Controller: GET /api/v1/members/me<br/>Headers: X-Loopers-LoginId, X-Loopers-LoginPw Controller->>Facade: getMyInfo(loginId, password) Facade->>AuthSvc: authenticate(loginId, password) AuthSvc->>Repository: findByLoginId(loginId) alt 회원 없음 AuthSvc-->>Client: CoreException (MEMBER_NOT_FOUND) else 회원 존재 AuthSvc->>AuthSvc: member.matchesPassword(password, encoder) alt 비밀번호 불일치 AuthSvc-->>Client: CoreException (AUTHENTICATION_FAILED) else 인증 성공 AuthSvc-->>Facade: MemberModel Facade->>Facade: MemberInfo.fromWithMaskedName(member) Note over Facade: 이름 마스킹 처리 (홍길동 → 홍길*) Facade-->>Controller: MemberInfo Controller-->>Client: ApiResponse {loginId, maskedName, birthDate, email} end end3. PATCH /api/v1/members/me/password (비밀번호 변경)
sequenceDiagram participant Client participant Controller as MemberV1Controller participant Facade as MemberFacade participant AuthSvc as MemberAuthService participant PwSvc as MemberPasswordService participant Repository as MemberRepository Client->>Controller: PATCH /api/v1/members/me/password<br/>Headers: X-Loopers-LoginId, X-Loopers-LoginPw<br/>Body: {currentPassword, newPassword} Controller->>Facade: changePassword(loginId, password, currentPw, newPw) Facade->>AuthSvc: authenticate(loginId, password) Note over AuthSvc: 헤더 기반 인증 (loginId 조회 + PW 매칭) AuthSvc-->>Facade: MemberModel (인증된 회원) Facade->>PwSvc: changePassword(member, currentPw, newRawPw) PwSvc->>PwSvc: member.matchesPassword(currentPw, encoder) alt 현재 비밀번호 불일치 PwSvc-->>Client: CoreException (PASSWORD_MISMATCH) else 일치 PwSvc->>PwSvc: new Password(newRawPw) - 형식 검증 PwSvc->>PwSvc: member.matchesPassword(newRawPw, encoder) alt 새 비밀번호 == 기존 비밀번호 PwSvc-->>Client: CoreException (PASSWORD_SAME_AS_OLD) else 다름 PwSvc->>PwSvc: password.validateAgainst(member.birthDate()) - 생년월일 검증 alt 생년월일 포함 PwSvc-->>Client: CoreException (PASSWORD_CONTAINS_BIRTH_DATE) else 검증 통과 PwSvc->>PwSvc: member.changePassword(encoder.encode(newRawPw)) PwSvc->>Repository: save(member) PwSvc-->>Facade: void Facade-->>Controller: void Controller-->>Client: ApiResponse SUCCESS end end endAPI 요약
/api/v1/members/api/v1/members/me/api/v1/members/me/password🧪 테스트 전략
3계층 테스트 구조
주요 검증 시나리오
✅ Checklist
📎 기타 참고 사항
변경 목적
Member 도메인 전체 구현으로 회원가입(POST), 내 정보 조회(GET), 비밀번호 변경(PATCH) API 제공. 추가로 TDD 개발 사이클을 Notion에 자동 로깅하는 .claude 후킹 인프라 추가.
핵심 변경점
리스크/주의사항
테스트/검증 방법
단위/통합/E2E 3계층 테스트(~30개)로 구성되었으며, E2E 테스트에서 정상/예외 경로 모두 커버. 헤더 기반 인증의 정확성과 Notion 로깅 성공 여부를 실제 배포 전 로컬 또는 스테이징에서 확인 필요.