sam-api/app/Http/Middleware/ApiKeyMiddleware.php

<?php

namespace App\Http\Middleware;

use Closure;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
use App\Models\Member;
use Illuminate\Support\Facades\Log;
use Laravel\Sanctum\PersonalAccessToken;

class ApiKeyMiddleware
{
    public function handle(Request $request, Closure $next)
    {
        // 요청 정보 저장 (예: DB, Log 파일 등)
        Log::info('API Request', [
            'ip' => $request->ip(),
            'user_id' => optional($request->user())->id,
            'method' => $request->method(),
            'uri' => $request->getRequestUri(),
            'input' => $request->all(),
            'headers' => $request->headers->all(),
        ]);


        $apiKey = $request->header('X-API-KEY');

        $validApiKey = false;

        // 1. API 키가 유효한지 확인
        if ($apiKey) {
            $validApiKey = DB::table('api_keys')
                ->where('key', $apiKey)
                ->where('is_active', true)
                ->exists();
        }

        if (!$validApiKey) {
            return response()->json(['message' => 'Unauthorized. Invalid or missing API key or token'], 401);
        }

        // Bearer 인증 (Sanctum)
        $user = [];
        if($token = $request->bearerToken()) {
            $accessToken = PersonalAccessToken::findToken($token);
            if ($accessToken && $accessToken->tokenable instanceof Member) {
                $user = $accessToken->tokenable;
            }
        }
        if ($user) {
            $request->setUserResolver(fn() => $user);
        }

        $response = $next($request);

        // 응답 정보 저장
        Log::info('API Response', [
            'uri' => $request->getRequestUri(),
            'status' => $response->getStatusCode(),
            'content' => $response->getContent(), // 응답 body도 원하면!
        ]);

        return $response;
    }
}
First Commit (API Project) 2025-07-17 10:05:47 +09:00			`<?php`

			`namespace App\Http\Middleware;`

			`use Closure;`
			`use Illuminate\Http\Request;`
			`use Illuminate\Support\Facades\DB;`
fix : 오류 수정 - swegger 정상화 (cherry picked from commit e19d7c7508f292f7103979f73fcdb15b3b73ff3b) 2025-07-17 17:39:28 +09:00			`use App\Models\Member;`
fit : swagger 내 정보 조회 description 수정 2025-07-24 11:47:54 +09:00			`use Illuminate\Support\Facades\Log;`
fix : Bearer 인증 기능 수정 (추가) 2025-07-22 16:44:26 +09:00			`use Laravel\Sanctum\PersonalAccessToken;`
First Commit (API Project) 2025-07-17 10:05:47 +09:00
			`class ApiKeyMiddleware`
			`{`
			`public function handle(Request $request, Closure $next)`
			`{`
fit : swagger 내 정보 조회 description 수정 2025-07-24 11:47:54 +09:00			`// 요청 정보 저장 (예: DB, Log 파일 등)`
			`Log::info('API Request', [`
			`'ip' => $request->ip(),`
			`'user_id' => optional($request->user())->id,`
			`'method' => $request->method(),`
			`'uri' => $request->getRequestUri(),`
			`'input' => $request->all(),`
			`'headers' => $request->headers->all(),`
			`]);`


First Commit (API Project) 2025-07-17 10:05:47 +09:00			`$apiKey = $request->header('X-API-KEY');`

			`$validApiKey = false;`

			`// 1. API 키가 유효한지 확인`
			`if ($apiKey) {`
			`$validApiKey = DB::table('api_keys')`
			`->where('key', $apiKey)`
			`->where('is_active', true)`
			`->exists();`
			`}`

			`if (!$validApiKey) {`
			`return response()->json(['message' => 'Unauthorized. Invalid or missing API key or token'], 401);`
			`}`

fix : Bearer 인증 기능 수정 (추가) 2025-07-22 16:44:26 +09:00			`// Bearer 인증 (Sanctum)`
			`$user = [];`
			`if($token = $request->bearerToken()) {`
			`$accessToken = PersonalAccessToken::findToken($token);`
			`if ($accessToken && $accessToken->tokenable instanceof Member) {`
			`$user = $accessToken->tokenable;`
			`}`
			`}`
			`if ($user) {`
			`$request->setUserResolver(fn() => $user);`
			`}`

fit : swagger 내 정보 조회 description 수정 2025-07-24 11:47:54 +09:00			`$response = $next($request);`

			`// 응답 정보 저장`
			`Log::info('API Response', [`
			`'uri' => $request->getRequestUri(),`
			`'status' => $response->getStatusCode(),`
fix : 로그, 알람 설정 수정 2025-07-25 09:12:53 +09:00			`'content' => $response->getContent(), // 응답 body도 원하면!`
fit : swagger 내 정보 조회 description 수정 2025-07-24 11:47:54 +09:00			`]);`
fix : Bearer 인증 기능 수정 (추가) 2025-07-22 16:44:26 +09:00
fit : swagger 내 정보 조회 description 수정 2025-07-24 11:47:54 +09:00			`return $response;`
First Commit (API Project) 2025-07-17 10:05:47 +09:00			`}`
			`}`