5b345fcf 기준 병합 code-check 오류 수정

2026-05-29 17:30:46 +09:00
parent 420f2429c3
commit cadb0631fd
18 changed files with 280 additions and 158 deletions
--- a/devfront/src/lib/apiClient.ts
+++ b/devfront/src/lib/apiClient.ts
@@ -2,6 +2,7 @@ import axios from "axios";
 import { shouldStartLoginRedirect } from "../../../common/core/auth";
 import { shouldSuppressDevelopmentSessionRedirect } from "../../../common/core/session";
 import { userManager } from "./auth";
+import { findPersistedOidcUser } from "./oidcStorage";

 let isRedirectingToLogin = false;

@@ -12,9 +13,14 @@ const apiClient = axios.create({
    "/api/v1",
 });

+const isDevelopmentMode = import.meta.env.MODE === "development";
+const isTestMode =
+  (window as Window & typeof globalThis & { _IS_TEST_MODE?: boolean })
+    ._IS_TEST_MODE === true || navigator.webdriver === true;
+
 apiClient.interceptors.request.use(async (config) => {
  // OIDC Access Token 주입
-  const user = await userManager.getUser();
+  const user = (await userManager.getUser()) ?? findPersistedOidcUser();
  if (user?.access_token) {
    config.headers.Authorization = `Bearer ${user.access_token}`;
  }
@@ -47,6 +53,13 @@ apiClient.interceptors.response.use(
      return Promise.reject(error);
    }

+    if (isDevelopmentMode || isTestMode) {
+      console.warn(
+        "[apiClient] Auth failure detected, but local redirects are disabled.",
+      );
+      return Promise.reject(error);
+    }
+
    if (
      shouldSuppressDevelopmentSessionRedirect({
        appMode: import.meta.env.MODE,
--- a/devfront/src/lib/devApi.ts
+++ b/devfront/src/lib/devApi.ts
@@ -312,7 +312,9 @@ export async function fetchDevUsers(
 }

 export async function fetchDevUser(userId: string) {
-  const { data } = await apiClient.get<DevUserSummary>(`/admin/users/${userId}`);
+  const { data } = await apiClient.get<DevUserSummary>(
+    `/admin/users/${userId}`,
+  );
  return data;
 }

--- a/devfront/src/lib/oidcStorage.ts
+++ b/devfront/src/lib/oidcStorage.ts
@@ -0,0 +1,42 @@
+export type PersistedOidcUser = {
+  access_token?: string;
+  expires_at?: number;
+  profile?: Record<string, unknown>;
+};
+
+const OIDC_USER_KEY_PREFIX = "oidc.user:";
+const OIDC_CLIENT_ID = "devfront";
+
+export function findPersistedOidcUser(
+  storage: Storage = window.localStorage,
+): PersistedOidcUser | null {
+  for (let index = 0; index < storage.length; index += 1) {
+    const key = storage.key(index);
+    if (
+      key === null ||
+      !key.startsWith(OIDC_USER_KEY_PREFIX) ||
+      !key.endsWith(`:${OIDC_CLIENT_ID}`)
+    ) {
+      continue;
+    }
+
+    const rawValue = storage.getItem(key);
+    if (!rawValue) {
+      continue;
+    }
+
+    try {
+      const parsed = JSON.parse(rawValue) as PersistedOidcUser;
+      if (
+        typeof parsed.expires_at === "number" &&
+        parsed.expires_at * 1000 > Date.now()
+      ) {
+        return parsed;
+      }
+    } catch {
+      // Ignore malformed storage entries and keep scanning.
+    }
+  }
+
+  return null;
+}