jw427 · jw427 · Sep 10, 2024 · Sep 10, 2024
diff --git a/src/main/java/com/wanted/gold/client/AuthGrpcClient.java b/src/main/java/com/wanted/gold/client/AuthGrpcClient.java
@@ -1,12 +1,17 @@
 package com.wanted.gold.client;
 
+import com.wanted.gold.client.dto.UserResponseDto;
+import com.wanted.gold.exception.*;
 import com.wanted.gold.grpc.AuthRequest;
 import com.wanted.gold.grpc.AuthResponse;
 import com.wanted.gold.grpc.AuthServiceGrpc;
 import io.grpc.ManagedChannel;
+import io.grpc.Status;
 import io.grpc.StatusRuntimeException;
 import io.grpc.netty.shaded.io.grpc.netty.NettyChannelBuilder;
+import org.springframework.http.HttpStatus;
 import org.springframework.stereotype.Component;
+import org.springframework.web.server.ResponseStatusException;
 
 @Component
 public class AuthGrpcClient {
@@ -19,15 +24,22 @@ public AuthGrpcClient() {
         blockingStub = AuthServiceGrpc.newBlockingStub(channel);
     }
 
-    public String getUserId(String accessToken) {
+    public UserResponseDto getUserIdAndRole(String accessToken) {
         AuthRequest request = AuthRequest.newBuilder()
                 .setAccessToken(accessToken)
                 .build();
         try {
             AuthResponse response = blockingStub.authCall(request);
-            return response.getUserId();
+            return new UserResponseDto(response.getUserId(), response.getRole());
         } catch (StatusRuntimeException e) {
-            throw new RuntimeException(e.getStatus().getDescription(), e);
+            if(e.getStatus().getCode() == Status.Code.UNAUTHENTICATED) // 401
+                throw new ResponseStatusException(HttpStatus.UNAUTHORIZED, e.getStatus().getDescription());
+            else if(e.getStatus().getCode() == Status.Code.NOT_FOUND) // 404
+                throw new ResponseStatusException(HttpStatus.NOT_FOUND, e.getStatus().getDescription());
+            else if(e.getStatus().getCode() == Status.Code.INVALID_ARGUMENT) // 400
+                throw new ResponseStatusException(HttpStatus.BAD_REQUEST, e.getStatus().getDescription());
+            else // 500
+                throw new ResponseStatusException(HttpStatus.INTERNAL_SERVER_ERROR, e.getStatus().getDescription());
         }
     }
 }
diff --git a/src/main/java/com/wanted/gold/client/dto/UserResponseDto.java b/src/main/java/com/wanted/gold/client/dto/UserResponseDto.java
@@ -0,0 +1,7 @@
+package com.wanted.gold.client.dto;
+
+public record UserResponseDto(
+        String userId,
+        String role
+) {
+}
diff --git a/src/main/java/com/wanted/gold/exception/ErrorCode.java b/src/main/java/com/wanted/gold/exception/ErrorCode.java
@@ -9,6 +9,7 @@
 public enum ErrorCode {
     // 기본
     BAD_REQUEST(HttpStatus.BAD_REQUEST, "잘못된 요청입니다."),
+    UNAUTHORIZED(HttpStatus.UNAUTHORIZED, "유효하지 않은 접근입니다."),
 
     // 주문
     QUANTITY_TOO_MANY(HttpStatus.BAD_REQUEST, "주문할 수 없는 수량입니다. 수량을 다시 확인해주세요."),

diff --git a/src/main/java/com/wanted/gold/exception/UnauthorizedException.java b/src/main/java/com/wanted/gold/exception/UnauthorizedException.java
@@ -0,0 +1,12 @@
+package com.wanted.gold.exception;
+
+public class UnauthorizedException extends BaseException {
+
+    public UnauthorizedException(ErrorCode errorCode) {
+        super(errorCode);
+    }
+
+    public UnauthorizedException(ErrorCode errorCode, String message) {
+        super(errorCode, message);
+    }
+}
diff --git a/src/main/java/com/wanted/gold/exception/handler/GlobalExceptionHandler.java b/src/main/java/com/wanted/gold/exception/handler/GlobalExceptionHandler.java
@@ -1,9 +1,6 @@
 package com.wanted.gold.exception.handler;
 
-import com.wanted.gold.exception.BadRequestException;
-import com.wanted.gold.exception.ConflictException;
-import com.wanted.gold.exception.ErrorResponse;
-import com.wanted.gold.exception.NotFoundException;
+import com.wanted.gold.exception.*;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.ExceptionHandler;
@@ -18,6 +15,12 @@ public ResponseEntity<ErrorResponse> handleBadRequestException(BadRequestExcepti
                 .body(new ErrorResponse(e.getErrorCode(), e.getErrorCode().getMessage()));
     }
 
+    @ExceptionHandler(UnauthorizedException.class)
+    public ResponseEntity<ErrorResponse> handleUnauthorizedException(UnauthorizedException e) {
+        return ResponseEntity.status(HttpStatus.UNAUTHORIZED)
+                .body(new ErrorResponse(e.getErrorCode(), e.getErrorCode().getMessage()));
+    }
+
     @ExceptionHandler(NotFoundException.class)
     public ResponseEntity<ErrorResponse> handleNotFoundException(NotFoundException e) {
         return ResponseEntity.status(HttpStatus.NOT_FOUND)

diff --git a/src/main/java/com/wanted/gold/order/controller/OrderController.java b/src/main/java/com/wanted/gold/order/controller/OrderController.java
@@ -1,5 +1,7 @@
 package com.wanted.gold.order.controller;
 
+import com.wanted.gold.exception.ErrorCode;
+import com.wanted.gold.exception.UnauthorizedException;
 import com.wanted.gold.order.domain.Order;
 import com.wanted.gold.order.domain.OrderType;
 import com.wanted.gold.order.dto.CreateOrderRequestDto;
@@ -26,7 +28,7 @@ public class OrderController {
     @PostMapping("")
     public ResponseEntity<String> createOrder(@RequestHeader(value = "Authorization") String token, @Valid @RequestBody CreateOrderRequestDto requestDto) {
         if(token == null || !token.startsWith("Bearer "))
-            return ResponseEntity.status(HttpStatus.UNAUTHORIZED).body("유효하지 않은 접근입니다.");
+            throw new UnauthorizedException(ErrorCode.UNAUTHORIZED);
         String accessToken = token.split("Bearer ")[1];
         String response = orderService.createOrder(accessToken, requestDto);
         return ResponseEntity.status(HttpStatus.CREATED).body(response);

diff --git a/src/main/java/com/wanted/gold/order/service/OrderService.java b/src/main/java/com/wanted/gold/order/service/OrderService.java
@@ -1,6 +1,7 @@
 package com.wanted.gold.order.service;
 
 import com.wanted.gold.client.AuthGrpcClient;
+import com.wanted.gold.client.dto.UserResponseDto;
 import com.wanted.gold.exception.BadRequestException;
 import com.wanted.gold.exception.ErrorCode;
 import com.wanted.gold.exception.NotFoundException;
@@ -42,8 +43,10 @@ public class OrderService {
     // 주문 생성
     @Transactional
     public String createOrder(String accessToken, CreateOrderRequestDto requestDto) {
-        // 액세스토큰으로 회원 식별번호 가져오기
-        String userIdStr = authGrpcClient.getUserId(accessToken);
+        // 액세스토큰으로 회원 정보 가져오기
+        UserResponseDto userResponseDto = authGrpcClient.getUserIdAndRole(accessToken);
+        // 회원 식별번호 가져오기
+        String userIdStr = userResponseDto.userId();
         // String -> UUID 변환
         UUID userId = UUID.fromString(userIdStr);
         // 입력받은 금 종류로 product 찾기

diff --git a/src/main/proto/auth.proto b/src/main/proto/auth.proto
@@ -10,6 +10,7 @@ message AuthRequest {
 
 message AuthResponse {
   string userId = 1;
+  string role = 2;
 }
 
 service AuthService {