fix: 전반적인 코드 개선 3차

MU-Software · MU-Software · commit 47a6a380e354 · 2026-05-12T01:40:53.000+09:00
diff --git a/app/admin_api/test/cms_test.py b/app/admin_api/test/cms_test.py
@@ -9,12 +9,15 @@
 
 @pytest.fixture
 def domain_group(superuser):
-    return DomainGroup.objects.create(
+    obj, _ = DomainGroup.objects.get_or_create(
         name="2025년 PyConKR 홈페이지",
-        domains=["2025.pycon.kr"],
-        created_by=superuser,
-        updated_by=superuser,
+        defaults={
+            "domains": ["2025.pycon.kr"],
+            "created_by": superuser,
+            "updated_by": superuser,
+        },
     )
+    return obj
 
 
 # ---- Auth -------------------------------------------------------------------
diff --git a/app/admin_api/views/modification_audit.py b/app/admin_api/views/modification_audit.py
@@ -25,10 +25,7 @@
 }
 
 
-@utils.extend_schema_view(
-    list=utils.extend_schema(tags=[OpenAPITag.ADMIN_MODIFICATION_AUDIT]),
-    retrieve=utils.extend_schema(tags=[OpenAPITag.ADMIN_MODIFICATION_AUDIT]),
-)
+@utils.extend_schema_view(list=utils.extend_schema(tags=[OpenAPITag.ADMIN_MODIFICATION_AUDIT]))
 class ModificationAuditAdminViewSet(mixins.ListModelMixin, viewsets.GenericViewSet):
     serializer_class = ModificationAuditResponseAdminSerializer
     permission_classes = [IsSuperUser]
diff --git a/app/admin_api/views/user.py b/app/admin_api/views/user.py
@@ -15,10 +15,11 @@
 from user.models import UserExt
 from user.models.organization import Organization
 
-ADMIN_METHODS = ["list", "retrieve", "create", "partial_update", "destroy"]
+USER_ADMIN_METHODS = ["list", "retrieve", "create", "partial_update"]
+ADMIN_METHODS = USER_ADMIN_METHODS + ["destroy"]
 
 
-@extend_schema_view(**{m: extend_schema(tags=[OpenAPITag.ADMIN_USER]) for m in ADMIN_METHODS})
+@extend_schema_view(**{m: extend_schema(tags=[OpenAPITag.ADMIN_USER]) for m in USER_ADMIN_METHODS})
 class UserAdminViewSet(
     mixins.RetrieveModelMixin,
     mixins.ListModelMixin,
diff --git a/app/cms/test/sitemap_api_test.py b/app/cms/test/sitemap_api_test.py
@@ -24,7 +24,7 @@ def test_list_view(api_client, create_sitemap):
 @pytest.mark.django_db
 def test_list_view_returns_only_matching_domain(api_client):
     group_main = DomainGroup.objects.create(name="main", domains=["pycon.kr"])
-    group_legacy = DomainGroup.objects.create(name="legacy", domains=["2025.pycon.kr"])
+    group_legacy = DomainGroup.objects.create(name="legacy", domains=["legacy.pycon.kr"])
 
     _create_sitemap("main_about", group=group_main)
     _create_sitemap("legacy_about", group=group_legacy)
diff --git a/app/core/authn/api_key.py b/app/core/authn/api_key.py
@@ -1,5 +1,6 @@
 from __future__ import annotations
 
+from hmac import compare_digest
 from typing import TYPE_CHECKING
 
 from django.conf import settings
@@ -30,10 +31,11 @@ def authenticate(self, request: Request) -> tuple["UserExt", None] | None:
         api_key = request.headers.get("x-api-key", "")
         api_secret = request.headers.get("x-api-secret", "")
 
-        if api_key.lower() in settings.EXT_API_KEYS and api_secret == settings.EXT_API_KEYS.get(api_key.lower()):
-            return self._get_or_create_api_key_user(api_key), None
-
-        return None
+        if not (expected_secret := settings.EXT_API_KEYS.get(api_key.lower())):
+            return None
+        if not compare_digest(api_secret.encode(), expected_secret.encode()):
+            return None
+        return self._get_or_create_api_key_user(api_key), None
 
 
 class APIKeyAuthenticationScheme(OpenApiAuthenticationExtension):  # type: ignore[no-untyped-call]
diff --git a/app/core/external_apis/portone/client.py b/app/core/external_apis/portone/client.py
@@ -1,7 +1,8 @@
 from __future__ import annotations
 
-from datetime import datetime
+from datetime import datetime, timedelta
 from logging import getLogger
+from time import time
 from traceback import format_exception
 from typing import Any, Literal
 
@@ -14,6 +15,11 @@
 logger = getLogger(__name__)
 
 DEFAULT_TIMEOUT = 5
+# PortOne v1 access_token 의 공식 TTL 은 발행 시점 +30분 (developers.portone.io 명시).
+# 응답에 `expired_at` (unix epoch sec) 가 포함되며, 만료 직전 재발급 race 를 막기 위한 안전 마진.
+TOKEN_REFRESH_MARGIN = timedelta(seconds=30)
+# `expired_at` 가 응답에 누락된 비정상 케이스의 보수적 fallback (공식 TTL 30분보다 짧게).
+TOKEN_FALLBACK_TTL = timedelta(minutes=5)
 RequestMethodType = Literal["GET", "OPTIONS", "HEAD", "POST", "PUT", "PATCH", "DELETE"]
 
 
@@ -29,6 +35,8 @@ class PortOneClient:
     def __init__(self, timeout: TimeoutTypes = DEFAULT_TIMEOUT) -> None:
         self._timeout = timeout
         self._client: Client | None = None
+        self._cached_token: str | None = None
+        self._cached_token_expires_at: float = 0.0
 
     @property
     def client(self) -> Client:
@@ -39,6 +47,10 @@ def client(self) -> Client:
 
     @property
     def _access_token(self) -> str:
+        # 만료 직전 안전 마진까지는 캐시 재사용 (PortOne 토큰 TTL 30분).
+        if self._cached_token and time() < self._cached_token_expires_at - TOKEN_REFRESH_MARGIN.total_seconds():
+            return self._cached_token
+
         response = self.client.post(
             url="/users/getToken", json={"imp_key": settings.PORTONE.imp_key, "imp_secret": settings.PORTONE.imp_secret}
         )
@@ -47,15 +59,18 @@ def _access_token(self) -> str:
             resp_serializer = PortOneV1ResponseSerializer.from_response(response)
             resp_serializer.is_valid(raise_exception=True)
 
-            if not (access_token := resp_serializer.validated_data["response"]["access_token"]):
+            resp = resp_serializer.validated_data["response"]
+            if not (access_token := resp.get("access_token")):
                 raise ValueError("PortOne access_token 값이 존재하지 않습니다.")
 
-            return access_token
-
         except Exception as e:
             logger.error(format_exception(e))
             raise PortOneException("PortOne AccessToken 획득에 실패했습니다.") from e
 
+        self._cached_token = access_token
+        self._cached_token_expires_at = float(resp.get("expired_at") or (time() + TOKEN_FALLBACK_TTL.total_seconds()))
+        return access_token
+
     def _request(
         self,
         method: RequestMethodType,
diff --git a/app/core/util/strutil.py b/app/core/util/strutil.py
@@ -14,5 +14,4 @@ def uuid_to_b64(in_str: UUID | str) -> str:
 
 
 def b64_to_uuid(in_str: str) -> UUID:
-    in_str += "=" * (4 - len(in_str) % 4)
-    return UUID(bytes=urlsafe_b64decode(in_str + "=="))
+    return UUID(bytes=urlsafe_b64decode(in_str + "=" * (-len(in_str) % 4)))
diff --git a/app/core/util/totp.py b/app/core/util/totp.py
@@ -1,3 +1,4 @@
+import warnings
 from base64 import b32encode
 from dataclasses import dataclass
 from hmac import new as hmac_new
@@ -21,9 +22,15 @@ def __post_init__(self) -> None:
         if self.digest not in ALLOWED_DIGESTS:
             raise ValueError(f"Unsupported digest algorithm: {self.digest}")
         if self.digest != "sha1":
-            raise Warning(f"Using {self.digest} is not recommended as Google Authenticator does not support it.")
+            warnings.warn(
+                f"Using {self.digest} is not recommended as Google Authenticator does not support it.",
+                stacklevel=2,
+            )
         if self.time_step != 30:
-            raise Warning(f"Using {self.time_step} is not recommended as Google Authenticator does not support it.")
+            warnings.warn(
+                f"Using time_step={self.time_step} is not recommended as Google Authenticator does not support it.",
+                stacklevel=2,
+            )
 
     def get_hotp(self, counter: int) -> str:
         mac = hmac_new(self.key, pack(">Q", counter), self.digest).digest()
diff --git a/app/internal_api/views.py b/app/internal_api/views.py
@@ -89,10 +89,11 @@ class DeskSupportViewSet(
         parameters=[
             OpenApiParameter(
                 name="otp",
-                type=OpenApiTypes.INT,
+                type=OpenApiTypes.STR,
                 location=OpenApiParameter.QUERY,
                 allow_blank=False,
                 required=True,
+                description="환불 승인자의 6자리 TOTP 코드",
             ),
         ],
         responses={
@@ -112,7 +113,7 @@ def destroy(
         """
         serializer = OrderTotalRefundSerializer(
             instance=self.get_object(),
-            data={"totp": request.GET.get("otp")},
+            data={"totp": request.query_params.get("otp")},
             context={"check_refundable_date": False},
         )
         serializer.is_valid(raise_exception=True)
diff --git a/app/shop/order/views/orders.py b/app/shop/order/views/orders.py
@@ -270,9 +270,9 @@ def retrieve_receipt(
 
 class OrderProductViewSet(mixins.DestroyModelMixin, viewsets.GenericViewSet):
     lookup_url_kwarg = "order_product_rel_id"
-    serializer_class = OrderDto
+    serializer_class = None
 
-    def get_queryset(self) -> models.QuerySet[Order]:
+    def get_queryset(self) -> models.QuerySet[OrderProductRelation]:
         if not isinstance(self.request.user, UserExt):
             return OrderProductRelation.objects.none()
 
diff --git a/app/shop/order/views/scancode.py b/app/shop/order/views/scancode.py
@@ -33,6 +33,7 @@ def to_response(self) -> response.Response:
 def _render_user(token: str) -> response.Response:
     if not (user := UserExt.from_scancode_token(token)):
         raise _ScanCodeError(msg="인증 정보를 찾을 수 없습니다.", code=status.HTTP_403_FORBIDDEN)
+    # 환불된 주문도 응답에 포함(현장 스태프의 이력 확인용). 단 모두 refunded 면 게이트.
     orders = list(Order.objects.filter_purchased_by(user).filter_in_last_six_months())
     if not any(o.current_status != PaymentHistoryStatus.refunded for o in orders):
         raise _ScanCodeError(msg="최근 6개월 이내에 결제한 주문이 없습니다.", code=status.HTTP_403_FORBIDDEN)
diff --git a/app/shop/product/migrations/0001_initial.py b/app/shop/product/migrations/0001_initial.py
@@ -667,14 +667,6 @@ class Migration(migrations.Migration):
                         to=settings.AUTH_USER_MODEL,
                     ),
                 ),
-                (
-                    "tag_set",
-                    models.ManyToManyField(
-                        related_name="product_set",
-                        through="product.ProductTagRelation",
-                        to="product.tag",
-                    ),
-                ),
             ],
             options={
                 "ordering": ["category__group__priority", "category__priority", "priority", "-created_at"],
@@ -953,6 +945,15 @@ class Migration(migrations.Migration):
             },
             bases=(simple_history.models.HistoricalChanges, models.Model),
         ),
+        migrations.AddField(
+            model_name="product",
+            name="tag_set",
+            field=models.ManyToManyField(
+                related_name="product_set",
+                through="product.ProductTagRelation",
+                to="product.tag",
+            ),
+        ),
         migrations.AddConstraint(
             model_name="categorygroup",
             constraint=models.UniqueConstraint(fields=("name",), name="uq__cat_grp__nm"),
diff --git a/app/shop/serializers/refund.py b/app/shop/serializers/refund.py
@@ -11,6 +11,7 @@
 from shop.order.models import Order, OrderProductRelation
 from shop.payment_history.models import PaymentHistory, PaymentHistoryStatus
 from shop.product.models import Product
+from simple_history.utils import bulk_update_with_history
 
 
 def _check_totp(context: dict, totp_value: str | None) -> None:
@@ -100,11 +101,11 @@ def refund(self) -> None:
 
         for rel in self.refund_target_prod_rels:
             rel.status = OrderProductRelation.OrderProductStatus.refunded
-            rel.save()
+        bulk_update_with_history(self.refund_target_prod_rels, OrderProductRelation, fields=["status"])
 
         PaymentHistory.objects.create(
             order=order,
-            imp_id=order.current_payment_history.imp_id,
+            imp_id=order.latest_imp_id,
             status=PaymentHistoryStatus.refunded,
             price=0,
         )
