Pseudo-Lab
diff --git a/‎.github/workflows/certificate-system.yml‎
Lines changed: 12 additions & 0 deletions b/‎.github/workflows/certificate-system.yml‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎cert/.env.example‎
Lines changed: 11 additions & 1 deletion b/‎cert/.env.example‎
Lines changed: 11 additions & 1 deletion
diff --git a/‎cert/backend/Dockerfile‎
Lines changed: 14 additions & 8 deletions b/‎cert/backend/Dockerfile‎
Lines changed: 14 additions & 8 deletions
diff --git a/‎cert/backend/pyproject.toml‎
Lines changed: 6 additions & 2 deletions b/‎cert/backend/pyproject.toml‎
Lines changed: 6 additions & 2 deletions
diff --git a/‎cert/backend/requirements.txt‎
Lines changed: 0 additions & 8 deletions b/‎cert/backend/requirements.txt‎
Lines changed: 0 additions & 8 deletions
diff --git a/‎cert/backend/src/main.py‎
Lines changed: 16 additions & 0 deletions b/‎cert/backend/src/main.py‎
Lines changed: 16 additions & 0 deletions
diff --git a/‎cert/backend/src/models/certificate.py‎
Lines changed: 21 additions & 1 deletion b/‎cert/backend/src/models/certificate.py‎
Lines changed: 21 additions & 1 deletion
diff --git a/‎cert/backend/src/routers/certificate.py‎
Lines changed: 51 additions & 2 deletions b/‎cert/backend/src/routers/certificate.py‎
Lines changed: 51 additions & 2 deletions
diff --git a/‎cert/backend/src/routers/logging.py‎
Lines changed: 21 additions & 0 deletions b/‎cert/backend/src/routers/logging.py‎
Lines changed: 21 additions & 0 deletions
@@ -33,6 +33,11 @@ jobs:
           APP_HOST=${{ vars.APP_HOST }}
           ENVIRONMENT=${{ vars.ENVIRONMENT }}
           NODE_ENV=${{ vars.NODE_ENV }}
+          DB_HOST=${{ vars.DB_HOST }}
+          DB_PORT=${{ vars.DB_PORT }}
+          DB_NAME=${{ vars.DB_NAME }}
+          DB_USER=${{ vars.DB_USER }}
+          DB_PASSWORD=${{ secrets.DB_PASSWORD }}
           CERT_TEMPLATE_ARCHIVE_PASSWORD=${{ secrets.CERT_TEMPLATE_ARCHIVE_PASSWORD }}
           NOTION_API_KEY=${{ secrets.NOTION_API_KEY }}
           NOTION_CERT_DB_ID=${{ secrets.NOTION_CERT_DB_ID }}
@@ -41,6 +46,7 @@ jobs:
           SMTP_PORT=${{ vars.SMTP_PORT }}
           SMTP_USERNAME=${{ secrets.SMTP_USERNAME }}
           SMTP_PASSWORD=${{ secrets.SMTP_PASSWORD }}
+          ACCESS_LOGGING_IP_SALT=${{ secrets.ACCESS_LOGGING_IP_SALT }}
           CORS_ORIGINS=${{ vars.CORS_ORIGINS }}
           FRONTEND_EXTERNAL_API_URL=${{ vars.FRONTEND_EXTERNAL_API_URL }}
           EOF
@@ -70,6 +76,11 @@ jobs:
           APP_HOST=${{ vars.APP_HOST }}
           ENVIRONMENT=${{ vars.ENVIRONMENT }}
           NODE_ENV=${{ vars.NODE_ENV }}
+          DB_HOST=${{ vars.DB_HOST }}
+          DB_PORT=${{ vars.DB_PORT }}
+          DB_NAME=${{ vars.DB_NAME }}
+          DB_USER=${{ vars.DB_USER }}
+          DB_PASSWORD=${{ secrets.DB_PASSWORD }}
           CERT_TEMPLATE_ARCHIVE_PASSWORD=${{ secrets.CERT_TEMPLATE_ARCHIVE_PASSWORD }}
           NOTION_API_KEY=${{ secrets.NOTION_API_KEY }}
           NOTION_CERT_DB_ID=${{ secrets.NOTION_CERT_DB_ID }}
@@ -78,6 +89,7 @@ jobs:
           SMTP_PORT=${{ vars.SMTP_PORT }}
           SMTP_USERNAME=${{ secrets.SMTP_USERNAME }}
           SMTP_PASSWORD=${{ secrets.SMTP_PASSWORD }}
+          ACCESS_LOGGING_IP_SALT=${{ secrets.ACCESS_LOGGING_IP_SALT }}
           CORS_ORIGINS=${{ vars.CORS_ORIGINS }}
           FRONTEND_EXTERNAL_API_URL=${{ vars.FRONTEND_EXTERNAL_API_URL }}
           EOF
 
@@ -16,4 +16,14 @@ APP_HOST=example.com
 ENVIRONMENT=dev
 NODE_ENV=development
 
-CERT_TEMPLATE_ARCHIVE_PASSWORD=your_secure_password
+CERT_TEMPLATE_ARCHIVE_PASSWORD=your_secure_password
+
+# DB configuration
+DB_HOST=your_db_host
+DB_PORT=your_db_port
+DB_NAME=your_db_name
+DB_USER=your_db_user
+DB_PASSWORD=your_db_password
+ACCESS_LOGGING_ENABLED=true
+ACCESS_LOGGING_EXCLUDE_PATHS=/health,/api/certs/all-projects,/api/log/pageview
+ACCESS_LOGGING_IP_SALT=your_ip_salt
@@ -1,25 +1,31 @@
 # Use an official Python runtime as a parent image
 FROM python:3.11-slim
 
+# 기본 Python 런타임 환경 변수
+ENV PYTHONDONTWRITEBYTECODE=1 \
+    PYTHONUNBUFFERED=1 \
+    TZ=Asia/Seoul \
+    VIRTUAL_ENV=/app/.venv \
+    PATH="/app/.venv/bin:${PATH}"
+
 # Set the working directory in the container
 WORKDIR /app
 
 # Install tzdata and set timezone to Asia/Seoul
 RUN apt-get update && \
-    apt-get install -y --no-install-recommends tzdata && \
+    apt-get install -y --no-install-recommends tzdata libgl1 libglib2.0-0 && \
     ln -snf /usr/share/zoneinfo/Asia/Seoul /etc/localtime && \
     echo "Asia/Seoul" > /etc/timezone && \
     apt-get clean && rm -rf /var/lib/apt/lists/*
 
-ENV TZ=Asia/Seoul
+# install uv for improved package management
+RUN pip install --no-cache-dir "uv>=0.5.0"
 
-# Copy the dependency files
-COPY requirements.txt .
-COPY uv.lock .
+# Copy only the dependency files to leverage Docker cache
+COPY pyproject.toml uv.lock ./
 
-# Install any needed packages specified in requirements.txt
-# Using uv pip install for faster and more reliable dependency management
-RUN pip install uv && uv pip install --system -r requirements.txt
+# Install the dependencies into the project virtualenv
+RUN uv sync --frozen
 
 # Copy the rest of the application code
 COPY . .
 
@@ -6,11 +6,16 @@ readme = "README.md"
 requires-python = ">=3.11"
 dependencies = [
     "aiohttp>=3.12.15",
-    "dotenv>=0.9.9",
+    "asyncpg>=0.30.0",
+    "aiosmtplib>=4.0.1",
     "fastapi>=0.109.1",
+    "gunicorn>=21.2.0",
+    "invisible-watermark>=0.2.0",
+    "opencv-python-headless>=4.11.0.86",
     "pillow>=10.1.0",
     "pydantic>=2.5.3",
     "pydantic-settings>=2.1.0",
+    "pypdf>=6.5.0",
     "python-dotenv>=1.0.1",
     "python-multipart>=0.0.6",
     "reportlab>=4.0.7",
@@ -20,5 +25,4 @@ dependencies = [
 
 [dependency-groups]
 dev = [
-    "aiosmtplib>=4.0.1",
 ]
@@ -6,6 +6,8 @@
 from fastapi.middleware.cors import CORSMiddleware
 
 from .routers import certificate
+from .routers.logging import logging_router
+from .utils.access_log import access_log_middleware, close_access_log, init_access_log
 
 
 def configure_logging() -> None:
@@ -35,6 +37,9 @@ def configure_logging() -> None:
     openapi_url=None if hide_docs else "/openapi.json",
 )
 
+# Access log middleware
+app.middleware("http")(access_log_middleware)
+
 # CORS 미들웨어 설정
 origins = os.getenv("CORS_ORIGINS", "").split(",")
 app.add_middleware(
@@ -47,6 +52,7 @@ def configure_logging() -> None:
 
 # 모든 환경에서 /api 프리픽스 사용 (개발/프로덕션 통일)
 app.include_router(certificate.certificate_router, prefix="/api")
+app.include_router(logging_router, prefix="/api")
 logger.info("FastAPI app initialized", extra={"environment": os.getenv("ENVIRONMENT")})
 
 
@@ -64,3 +70,13 @@ async def read_root():
 async def health_check():
     """헬스 체크 엔드포인트"""
     return {"status": "healthy"}
+
+
+@app.on_event("startup")
+async def setup_access_log():
+    await init_access_log(app)
+
+
+@app.on_event("shutdown")
+async def teardown_access_log():
+    await close_access_log(app)
@@ -28,7 +28,7 @@ class CertificateData(BaseModel):
     id: str = Field(..., example="2533a2a2-eed5-81fa-9921-c14d2cd117b7", description="수료증 신청 페이지 ID")
     name: str = Field(..., example="홍길동", description="신청자 이름")
     recipient_email: str = Field(..., example="hong@example.com", description="수료자 이메일")
-    certificate_number: str = Field(..., example="CERT-2024-001", description="수료증 번호")
+    certificate_number: str = Field(..., example="A2025S10_0156", description="수료증 번호")
     issue_date: str = Field(..., example="2024-01-15", description="신청 날짜")
     certificate_status: CertificateStatus = Field(..., example=CertificateStatus.PENDING, description="발급 여부")
     season: int = Field(..., example=10, description="참여 기수")
@@ -42,6 +42,26 @@ class CertificateResponse(BaseModel):
     data: Optional[CertificateData] = Field(None, description="수료증 데이터")
 
 
+class CertificateVerifyRequest(BaseModel):
+    """수료증 번호 확인 요청 모델"""
+    certificate_number: str = Field(..., example="A2025S10_0156", description="수료증 번호")
+
+
+class CertificateVerifyData(BaseModel):
+    """수료증 번호 확인 데이터"""
+    name: str = Field(..., example="홍길동", description="신청자 이름")
+    course: str = Field(..., example="Wrapping Up Pseudolab", description="스터디명")
+    season: str = Field(..., example="10기", description="참여 기수")
+    issue_date: str = Field(..., example="2024-01-15", description="발급일")
+
+
+class CertificateVerifyResponse(BaseModel):
+    """수료증 번호 확인 응답"""
+    valid: bool = Field(..., example=True, description="확인 여부")
+    message: str = Field(..., example="수료증 확인에 성공했습니다.", description="결과 메시지")
+    data: Optional[CertificateVerifyData] = Field(None, description="수료증 정보")
+
+
 class ErrorResponse(BaseModel):
     """에러 응답 모델"""
     status: str = Field(..., example="fail", description="응답 상태")
 
@@ -1,7 +1,13 @@
-from fastapi import APIRouter, HTTPException, Response
+from fastapi import APIRouter, HTTPException, Response, File, UploadFile
 
 from ..models.project import Project, ProjectsBySeasonResponse
-from ..models.certificate import CertificateCreate, CertificateResponse, ErrorResponse
+from ..models.certificate import (
+    CertificateCreate,
+    CertificateResponse,
+    CertificateVerifyRequest,
+    CertificateVerifyResponse,
+    ErrorResponse,
+)
 from ..services.certificate_service import CertificateService, ProjectService
 from ..constants.error_codes import ResponseStatus
 
@@ -91,3 +97,46 @@ async def clear_cache():
     """캐시 삭제"""
     ProjectService.clear_cache()
     return {"message": "캐시 삭제 완료"}
+
+@certificate_router.post("/verify")
+async def verify_certificate(file: UploadFile = File(...)):
+    """수료증의 진위 여부를 확인합니다."""
+    # 파일 확장자 체크 (PDF만 허용)
+    if not file.filename.lower().endswith('.pdf'):
+        raise HTTPException(status_code=400, detail="PDF 파일만 업로드 가능합니다.")
+    
+    try:
+        file_bytes = await file.read()
+        result = await CertificateService.verify_certificate(file_bytes)
+        return result
+    except Exception as e:
+        import logging
+        logging.error(f"검증 중 오류 발생: {e}")
+        raise HTTPException(status_code=500, detail="파일 처리 중 오류가 발생했습니다.")
+
+@certificate_router.post(
+    "/verify-by-number",
+    response_model=CertificateVerifyResponse,
+    responses={
+        200: {
+            "description": "수료증 번호 확인 성공/실패",
+            "model": CertificateVerifyResponse
+        },
+        400: {
+            "description": "잘못된 요청",
+            "model": ErrorResponse
+        },
+        500: {
+            "description": "서버 내부 오류",
+            "model": ErrorResponse
+        }
+    }
+)
+async def verify_certificate_by_number(payload: CertificateVerifyRequest):
+    """수료증 번호로 수료 여부를 확인합니다."""
+    certificate_number = payload.certificate_number.strip()
+    if not certificate_number:
+        raise HTTPException(status_code=400, detail="수료증 번호를 입력해주세요.")
+
+    result = await CertificateService.verify_certificate_by_number(certificate_number)
+    return result
@@ -0,0 +1,21 @@
+from fastapi import APIRouter, HTTPException, Request
+from pydantic import BaseModel
+
+from ..utils.access_log import log_page_view
+
+
+logging_router = APIRouter(prefix="/log", tags=["log"])
+
+
+class PageViewRequest(BaseModel):
+    path: str
+
+
+@logging_router.post("/pageview")
+async def track_page_view(payload: PageViewRequest, request: Request):
+    path = payload.path.strip()
+    if not path.startswith("/"):
+        raise HTTPException(status_code=400, detail="path must start with '/'")
+
+    await log_page_view(request, path)
+    return {"status": "ok"}