feat: 코스 사용자 확인 권한에서 admin은 모두 통과할 수 있도록 설정 #163

boostcampwm-2024 · Nov 23, 2024 · 1c04daa · 1c04daa
1 parent 8b5fb07
commit 1c04daa
Show file tree

Hide file tree

Showing 4 changed files with 36 additions and 9 deletions.
diff --git a/backend/src/admin/admin.module.ts b/backend/src/admin/admin.module.ts
@@ -22,5 +22,7 @@ import { AuthModule } from '@src/auth/auth.module';
       },
     ]),
   ],
+  providers: [AdminGuard],
+  exports: [AdminGuard],
 })
 export class AdminModule {}
diff --git a/backend/src/admin/guard/AdminGuard.ts b/backend/src/admin/guard/AdminGuard.ts
@@ -11,14 +11,17 @@ export class AdminGuard extends JwtAuthGuard {
     if (!isAuthenticated) {
       return false;
     }
-
-    const request = context.switchToHttp().getRequest();
-    const user = request.user;
-
-    if (!user || user.role !== UserRole.ADMIN) {
+    if (!this.isAdmin(context)) {
       throw new AuthorizationException('관리자 권한이 없습니다.');
     }
 
     return true;
   }
+
+  isAdmin(context: ExecutionContext): boolean {
+    const request = context.switchToHttp().getRequest();
+    const user = request.user;
+
+    return user?.role === UserRole.ADMIN;
+  }
 }
diff --git a/backend/src/course/course.module.ts b/backend/src/course/course.module.ts
@@ -6,10 +6,24 @@ import { CourseRepository } from './course.repository';
 import { PlaceModule } from '../place/place.module';
 import { TypeOrmModule } from '@nestjs/typeorm';
 import { CoursePlace } from '@src/course/entity/course-place.entity';
+import { AdminGuard } from '@src/admin/guard/AdminGuard';
+import { CoursePermissionGuard } from '@src/course/guards/CoursePermissionGuard';
+import { AdminModule } from '@src/admin/admin.module';
 
 @Module({
-  imports: [UserModule, PlaceModule, TypeOrmModule.forFeature([CoursePlace])],
+  imports: [
+    UserModule,
+    PlaceModule,
+    AdminModule,
+    TypeOrmModule.forFeature([CoursePlace]),
+  ],
   controllers: [CourseController],
-  providers: [CourseService, CourseRepository],
+  providers: [
+    CourseService,
+    CourseRepository,
+    CoursePermissionGuard,
+    AdminGuard,
+  ],
+  exports: [CoursePermissionGuard],
 })
 export class CourseModule {}
diff --git a/backend/src/course/guards/CoursePermissionGuard.ts b/backend/src/course/guards/CoursePermissionGuard.ts
@@ -1,16 +1,24 @@
 import { CanActivate, ExecutionContext, Injectable } from '@nestjs/common';
 import { CourseService } from '../course.service';
 import { CoursePermissionException } from '../exception/CoursePermissionException';
+import { AdminGuard } from '@src/admin/guard/AdminGuard';
 
 @Injectable()
 export class CoursePermissionGuard implements CanActivate {
-  constructor(private readonly courseService: CourseService) {}
+  constructor(
+    private readonly adminGuard: AdminGuard,
+    private readonly courseService: CourseService,
+  ) {}
 
   async canActivate(context: ExecutionContext): Promise<boolean> {
+    const isAdmin = this.adminGuard.isAdmin(context);
+    if (isAdmin) {
+      return true;
+    }
+
     const request = context.switchToHttp().getRequest();
     const courseId = Number(request.params.id);
     const userId = Number(request.user.userId);
-
     const courseOwnerId = await this.courseService.getCourseOwnerId(courseId);
     if (courseOwnerId !== userId) {
       throw new CoursePermissionException(courseId);