From 06d0098a43a128fd3b3760a66a6cc3d75cf16246 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=EC=8B=9C=EA=B3=A8=EC=95=BD=EC=82=AC?= <thug0bin@gmail.com>
Date: Thu, 7 May 2026 08:57:55 +0900
Subject: [PATCH] =?UTF-8?q?=EC=B4=88=EA=B8=B0=20=EC=BB=A4=EB=B0=8B:=20?=
 =?UTF-8?q?=EC=9D=B8=EC=A6=9D=20=EC=84=9C=EB=B2=84=20=EB=B6=84=EB=A6=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

0bin-label-app 프로젝트의 auth 폴더에서 별도 리포지토리로 분리.

Flask 기반 로그인 인증 서버:
- POST /api/login: 클라이언트 로그인 API
- GET /api/health: 서버 상태 확인
- /admin: 관리자 웹 페이지
- SQLite 기반 사용자 및 로그인 기록 저장

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
---
 .gitignore               |  27 ++++++
 README.md                |  99 +++++++++++++++++++
 app.py                   | 197 ++++++++++++++++++++++++++++++++++++++
 models.py                |  48 ++++++++++
 requirements.txt         |   3 +
 templates/dashboard.html | 199 +++++++++++++++++++++++++++++++++++++++
 templates/login.html     |  91 ++++++++++++++++++
 7 files changed, 664 insertions(+)
 create mode 100644 .gitignore
 create mode 100644 README.md
 create mode 100644 app.py
 create mode 100644 models.py
 create mode 100644 requirements.txt
 create mode 100644 templates/dashboard.html
 create mode 100644 templates/login.html

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..bc217c3
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,27 @@
+# Python
+__pycache__/
+*.py[cod]
+*$py.class
+*.so
+.Python
+*.egg-info/
+.venv/
+venv/
+env/
+
+# Flask
+instance/
+*.sqlite
+*.db
+
+# IDE
+.vscode/
+.idea/
+*.swp
+
+# OS
+.DS_Store
+Thumbs.db
+
+# Logs
+*.log
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..24f671c
--- /dev/null
+++ b/README.md
@@ -0,0 +1,99 @@
+# 0bin Label App - 인증 서버
+
+Flask 기반 인증 서버 (포트: 8898)
+
+## 설치
+
+```bash
+cd auth
+pip install -r requirements.txt
+```
+
+## 실행
+
+```bash
+python app.py
+```
+
+서버가 `http://0.0.0.0:8898`에서 시작됩니다.
+
+## 기능
+
+### 1. 클라이언트 인증 API
+
+- **엔드포인트**: `POST /api/login`
+- **요청**:
+  ```json
+  {
+    "username": "test",
+    "password": "test"
+  }
+  ```
+- **응답 (성공)**:
+  ```json
+  {
+    "success": true,
+    "message": "로그인 성공",
+    "username": "test"
+  }
+  ```
+- **응답 (실패)**:
+  ```json
+  {
+    "success": false,
+    "message": "아이디 또는 비밀번호가 올바르지 않습니다"
+  }
+  ```
+
+### 2. Admin 웹 페이지
+
+- **URL**: `http://localhost:8898/admin`
+- **계정**: `admin` / `admin1234`
+- **기능**:
+  - 사용자 목록 조회
+  - 로그인 기록 조회 (최근 50개)
+  - 통계 확인
+
+## 기본 계정
+
+### 클라이언트 계정
+- 아이디: `test`
+- 비밀번호: `test`
+
+### Admin 계정
+- 아이디: `admin`
+- 비밀번호: `admin1234`
+
+## 리버스 프록시 설정
+
+외부에서 `login.0bin.in`으로 접근하려면 Nginx 등을 사용하여 리버스 프록시를 설정하세요.
+
+```nginx
+server {
+    listen 80;
+    server_name login.0bin.in;
+
+    location / {
+        proxy_pass http://localhost:8898;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+}
+```
+
+## 데이터베이스
+
+- SQLite (`auth_db.sqlite`)
+- 자동으로 생성됨
+- 테이블:
+  - `users`: 사용자 정보
+  - `login_logs`: 로그인 기록
+
+## 보안
+
+**주의**: 프로덕션 환경에서는 다음을 변경하세요:
+1. `app.config['SECRET_KEY']` 변경
+2. Admin 계정 비밀번호 변경
+3. HTTPS 사용
+4. 환경 변수로 민감 정보 관리
diff --git a/app.py b/app.py
new file mode 100644
index 0000000..456cb7f
--- /dev/null
+++ b/app.py
@@ -0,0 +1,197 @@
+# app.py
+# 0bin Label App 인증 서버 (Flask)
+
+from flask import Flask, request, jsonify, render_template, redirect, url_for, session
+from models import db, User, LoginLog
+from datetime import datetime
+import os
+
+app = Flask(__name__)
+app.config['SECRET_KEY'] = 'your-secret-key-change-this-in-production'
+app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///auth_db.sqlite'
+app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
+
+# DB 초기화
+db.init_app(app)
+
+
+# ============================================================
+# API 엔드포인트 (클라이언트용)
+# ============================================================
+
+@app.route('/api/login', methods=['POST'])
+def api_login():
+    """클라이언트 로그인 API"""
+    try:
+        data = request.get_json()
+        username = data.get('username', '').strip()
+        password = data.get('password', '').strip()
+
+        if not username or not password:
+            return jsonify({
+                'success': False,
+                'message': '아이디와 비밀번호를 입력하세요'
+            }), 400
+
+        # 사용자 조회
+        user = User.query.filter_by(username=username).first()
+
+        # 로그인 시도 기록
+        ip_address = request.remote_addr
+        user_agent = request.headers.get('User-Agent', '')
+
+        if user and user.is_active and user.check_password(password):
+            # 로그인 성공
+            log = LoginLog(
+                user_id=user.id,
+                ip_address=ip_address,
+                user_agent=user_agent,
+                success=True
+            )
+            db.session.add(log)
+            db.session.commit()
+
+            return jsonify({
+                'success': True,
+                'message': '로그인 성공',
+                'username': user.username
+            }), 200
+        else:
+            # 로그인 실패
+            if user:
+                log = LoginLog(
+                    user_id=user.id,
+                    ip_address=ip_address,
+                    user_agent=user_agent,
+                    success=False
+                )
+                db.session.add(log)
+                db.session.commit()
+
+            return jsonify({
+                'success': False,
+                'message': '아이디 또는 비밀번호가 올바르지 않습니다'
+            }), 401
+
+    except Exception as e:
+        return jsonify({
+            'success': False,
+            'message': f'서버 오류: {str(e)}'
+        }), 500
+
+
+@app.route('/api/health', methods=['GET'])
+def api_health():
+    """서버 상태 확인"""
+    return jsonify({
+        'status': 'ok',
+        'timestamp': datetime.utcnow().isoformat()
+    }), 200
+
+
+# ============================================================
+# Admin 페이지 (웹 UI)
+# ============================================================
+
+@app.route('/')
+def index():
+    """메인 페이지 - Admin 로그인으로 리다이렉트"""
+    return redirect(url_for('admin_login'))
+
+
+@app.route('/admin', methods=['GET'])
+def admin_login():
+    """Admin 로그인 페이지"""
+    if 'admin_logged_in' in session:
+        return redirect(url_for('admin_dashboard'))
+    return render_template('login.html')
+
+
+@app.route('/admin/login', methods=['POST'])
+def admin_login_post():
+    """Admin 로그인 처리"""
+    username = request.form.get('username', '').strip()
+    password = request.form.get('password', '').strip()
+
+    # 간단한 admin 계정 (하드코딩)
+    # 실제 운영 시에는 별도 Admin 테이블 사용 권장
+    if username == 'admin' and password == 'admin1234':
+        session['admin_logged_in'] = True
+        session['admin_username'] = username
+        return redirect(url_for('admin_dashboard'))
+    else:
+        return render_template('login.html', error='잘못된 관리자 계정입니다')
+
+
+@app.route('/admin/logout')
+def admin_logout():
+    """Admin 로그아웃"""
+    session.pop('admin_logged_in', None)
+    session.pop('admin_username', None)
+    return redirect(url_for('admin_login'))
+
+
+@app.route('/admin/dashboard')
+def admin_dashboard():
+    """Admin 대시보드"""
+    if 'admin_logged_in' not in session:
+        return redirect(url_for('admin_login'))
+
+    # 사용자 목록
+    users = User.query.all()
+
+    # 최근 로그인 기록 (최대 50개)
+    recent_logs = LoginLog.query.order_by(
+        LoginLog.login_time.desc()
+    ).limit(50).all()
+
+    # 통계
+    total_users = User.query.count()
+    total_logins = LoginLog.query.filter_by(success=True).count()
+    failed_logins = LoginLog.query.filter_by(success=False).count()
+
+    return render_template(
+        'dashboard.html',
+        users=users,
+        recent_logs=recent_logs,
+        total_users=total_users,
+        total_logins=total_logins,
+        failed_logins=failed_logins
+    )
+
+
+# ============================================================
+# DB 초기화
+# ============================================================
+
+def init_db():
+    """데이터베이스 초기화 및 test 계정 생성"""
+    with app.app_context():
+        # 테이블 생성
+        db.create_all()
+
+        # test 계정이 없으면 생성
+        test_user = User.query.filter_by(username='test').first()
+        if not test_user:
+            test_user = User(username='test')
+            test_user.set_password('test')
+            db.session.add(test_user)
+            db.session.commit()
+            print('[DB] test/test 계정 생성 완료')
+        else:
+            print('[DB] test 계정 이미 존재')
+
+
+if __name__ == '__main__':
+    # DB 초기화
+    if not os.path.exists('auth_db.sqlite'):
+        print('[DB] 데이터베이스 생성 중...')
+        init_db()
+    else:
+        print('[DB] 기존 데이터베이스 사용')
+
+    # Flask 서버 실행 (8898 포트)
+    print('[서버] 인증 서버 시작: http://0.0.0.0:8898')
+    print('[서버] Admin 페이지: http://localhost:8898/admin')
+    print('[서버] API 엔드포인트: http://localhost:8898/api/login')
+    app.run(host='0.0.0.0', port=8898, debug=True)
diff --git a/models.py b/models.py
new file mode 100644
index 0000000..fde3df8
--- /dev/null
+++ b/models.py
@@ -0,0 +1,48 @@
+# models.py
+# 인증 서버 데이터베이스 모델
+
+from flask_sqlalchemy import SQLAlchemy
+from datetime import datetime
+from werkzeug.security import generate_password_hash, check_password_hash
+
+db = SQLAlchemy()
+
+
+class User(db.Model):
+    """사용자 모델"""
+    __tablename__ = 'users'
+
+    id = db.Column(db.Integer, primary_key=True)
+    username = db.Column(db.String(50), unique=True, nullable=False)
+    password_hash = db.Column(db.String(255), nullable=False)
+    created_at = db.Column(db.DateTime, default=datetime.utcnow)
+    is_active = db.Column(db.Boolean, default=True)
+
+    # 관계: 로그인 기록
+    login_logs = db.relationship('LoginLog', backref='user', lazy=True)
+
+    def set_password(self, password):
+        """비밀번호 해시 설정"""
+        self.password_hash = generate_password_hash(password)
+
+    def check_password(self, password):
+        """비밀번호 확인"""
+        return check_password_hash(self.password_hash, password)
+
+    def __repr__(self):
+        return f'<User {self.username}>'
+
+
+class LoginLog(db.Model):
+    """로그인 기록 모델"""
+    __tablename__ = 'login_logs'
+
+    id = db.Column(db.Integer, primary_key=True)
+    user_id = db.Column(db.Integer, db.ForeignKey('users.id'), nullable=False)
+    login_time = db.Column(db.DateTime, default=datetime.utcnow)
+    ip_address = db.Column(db.String(50))
+    user_agent = db.Column(db.String(255))
+    success = db.Column(db.Boolean, default=True)
+
+    def __repr__(self):
+        return f'<LoginLog {self.user_id} at {self.login_time}>'
diff --git a/requirements.txt b/requirements.txt
new file mode 100644
index 0000000..3d29f5e
--- /dev/null
+++ b/requirements.txt
@@ -0,0 +1,3 @@
+Flask==3.0.0
+Flask-SQLAlchemy==3.1.1
+Werkzeug==3.0.1
diff --git a/templates/dashboard.html b/templates/dashboard.html
new file mode 100644
index 0000000..5ffd6ef
--- /dev/null
+++ b/templates/dashboard.html
@@ -0,0 +1,199 @@
+<!DOCTYPE html>
+<html lang="ko">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>0bin Label App - Admin 대시보드</title>
+    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
+    <link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css" rel="stylesheet">
+    <style>
+        body {
+            background-color: #f8f9fa;
+        }
+        .navbar {
+            background: linear-gradient(135deg, #4CAF50 0%, #2196F3 100%);
+        }
+        .stats-card {
+            border-left: 4px solid;
+            transition: transform 0.2s;
+        }
+        .stats-card:hover {
+            transform: translateY(-5px);
+        }
+        .stats-card.users {
+            border-left-color: #4CAF50;
+        }
+        .stats-card.success {
+            border-left-color: #2196F3;
+        }
+        .stats-card.failed {
+            border-left-color: #f44336;
+        }
+        .table-container {
+            background: white;
+            border-radius: 10px;
+            padding: 20px;
+            box-shadow: 0 2px 10px rgba(0,0,0,0.1);
+        }
+        .badge-success-log {
+            background-color: #4CAF50;
+        }
+        .badge-failed-log {
+            background-color: #f44336;
+        }
+    </style>
+</head>
+<body>
+    <!-- Navbar -->
+    <nav class="navbar navbar-dark mb-4">
+        <div class="container-fluid">
+            <span class="navbar-brand mb-0 h1">
+                <i class="fas fa-tag"></i> 청춘라벨 - 관리자 대시보드
+            </span>
+            <div>
+                <span class="text-white me-3">
+                    <i class="fas fa-user"></i> {{ session.admin_username }}
+                </span>
+                <a href="{{ url_for('admin_logout') }}" class="btn btn-outline-light btn-sm">
+                    <i class="fas fa-sign-out-alt"></i> 로그아웃
+                </a>
+            </div>
+        </div>
+    </nav>
+
+    <div class="container-fluid">
+        <!-- 통계 카드 -->
+        <div class="row mb-4">
+            <div class="col-md-4">
+                <div class="card stats-card users">
+                    <div class="card-body">
+                        <div class="d-flex justify-content-between align-items-center">
+                            <div>
+                                <h6 class="text-muted mb-2">총 사용자</h6>
+                                <h2 class="mb-0">{{ total_users }}</h2>
+                            </div>
+                            <div class="text-muted">
+                                <i class="fas fa-users fa-3x"></i>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-md-4">
+                <div class="card stats-card success">
+                    <div class="card-body">
+                        <div class="d-flex justify-content-between align-items-center">
+                            <div>
+                                <h6 class="text-muted mb-2">성공한 로그인</h6>
+                                <h2 class="mb-0">{{ total_logins }}</h2>
+                            </div>
+                            <div class="text-muted">
+                                <i class="fas fa-check-circle fa-3x"></i>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-md-4">
+                <div class="card stats-card failed">
+                    <div class="card-body">
+                        <div class="d-flex justify-content-between align-items-center">
+                            <div>
+                                <h6 class="text-muted mb-2">실패한 로그인</h6>
+                                <h2 class="mb-0">{{ failed_logins }}</h2>
+                            </div>
+                            <div class="text-muted">
+                                <i class="fas fa-times-circle fa-3x"></i>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <!-- 사용자 목록 -->
+        <div class="table-container mb-4">
+            <h4 class="mb-3">
+                <i class="fas fa-users"></i> 사용자 목록
+            </h4>
+            <div class="table-responsive">
+                <table class="table table-hover">
+                    <thead class="table-light">
+                        <tr>
+                            <th>ID</th>
+                            <th>아이디</th>
+                            <th>생성일</th>
+                            <th>활성 상태</th>
+                            <th>로그인 횟수</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                        {% for user in users %}
+                        <tr>
+                            <td>{{ user.id }}</td>
+                            <td><strong>{{ user.username }}</strong></td>
+                            <td>{{ user.created_at.strftime('%Y-%m-%d %H:%M') }}</td>
+                            <td>
+                                {% if user.is_active %}
+                                <span class="badge bg-success">활성</span>
+                                {% else %}
+                                <span class="badge bg-secondary">비활성</span>
+                                {% endif %}
+                            </td>
+                            <td>
+                                <span class="badge bg-primary">
+                                    {{ user.login_logs|selectattr('success')|list|length }}회
+                                </span>
+                            </td>
+                        </tr>
+                        {% endfor %}
+                    </tbody>
+                </table>
+            </div>
+        </div>
+
+        <!-- 최근 로그인 기록 -->
+        <div class="table-container">
+            <h4 class="mb-3">
+                <i class="fas fa-history"></i> 최근 로그인 기록 (최대 50개)
+            </h4>
+            <div class="table-responsive">
+                <table class="table table-hover table-sm">
+                    <thead class="table-light">
+                        <tr>
+                            <th>시간</th>
+                            <th>사용자</th>
+                            <th>IP 주소</th>
+                            <th>User Agent</th>
+                            <th>결과</th>
+                        </tr>
+                    </thead>
+                    <tbody>
+                        {% for log in recent_logs %}
+                        <tr>
+                            <td>{{ log.login_time.strftime('%Y-%m-%d %H:%M:%S') }}</td>
+                            <td><strong>{{ log.user.username }}</strong></td>
+                            <td><code>{{ log.ip_address }}</code></td>
+                            <td>
+                                <small class="text-muted">
+                                    {{ log.user_agent[:50] }}{% if log.user_agent|length > 50 %}...{% endif %}
+                                </small>
+                            </td>
+                            <td>
+                                {% if log.success %}
+                                <span class="badge badge-success-log">성공</span>
+                                {% else %}
+                                <span class="badge badge-failed-log">실패</span>
+                                {% endif %}
+                            </td>
+                        </tr>
+                        {% endfor %}
+                    </tbody>
+                </table>
+            </div>
+        </div>
+    </div>
+
+    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js"></script>
+</body>
+</html>
diff --git a/templates/login.html b/templates/login.html
new file mode 100644
index 0000000..7b13146
--- /dev/null
+++ b/templates/login.html
@@ -0,0 +1,91 @@
+<!DOCTYPE html>
+<html lang="ko">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>0bin Label App - Admin 로그인</title>
+    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
+    <style>
+        body {
+            background: linear-gradient(135deg, #4CAF50 0%, #2196F3 100%);
+            min-height: 100vh;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+        }
+        .login-card {
+            max-width: 400px;
+            width: 100%;
+            background: white;
+            border-radius: 15px;
+            box-shadow: 0 10px 40px rgba(0,0,0,0.2);
+            overflow: hidden;
+        }
+        .login-header {
+            background: linear-gradient(135deg, #4CAF50 0%, #2196F3 100%);
+            color: white;
+            padding: 30px 20px;
+            text-align: center;
+        }
+        .login-header h1 {
+            font-size: 28px;
+            font-weight: bold;
+            margin: 0;
+        }
+        .login-header p {
+            margin: 10px 0 0 0;
+            opacity: 0.95;
+        }
+        .login-body {
+            padding: 30px;
+        }
+        .btn-login {
+            background: linear-gradient(135deg, #4CAF50 0%, #45a049 100%);
+            border: none;
+            color: white;
+            padding: 12px;
+            font-weight: bold;
+        }
+        .btn-login:hover {
+            background: linear-gradient(135deg, #45a049 0%, #3d8b40 100%);
+            color: white;
+        }
+    </style>
+</head>
+<body>
+    <div class="login-card">
+        <div class="login-header">
+            <h1>청춘라벨</h1>
+            <p>관리자 로그인</p>
+        </div>
+        <div class="login-body">
+            {% if error %}
+            <div class="alert alert-danger" role="alert">
+                {{ error }}
+            </div>
+            {% endif %}
+
+            <form method="POST" action="{{ url_for('admin_login_post') }}">
+                <div class="mb-3">
+                    <label for="username" class="form-label">아이디</label>
+                    <input type="text" class="form-control" id="username" name="username" required autofocus>
+                </div>
+                <div class="mb-3">
+                    <label for="password" class="form-label">비밀번호</label>
+                    <input type="password" class="form-control" id="password" name="password" required>
+                </div>
+                <div class="d-grid">
+                    <button type="submit" class="btn btn-login">로그인</button>
+                </div>
+            </form>
+
+            <hr class="my-4">
+            <p class="text-center text-muted small mb-0">
+                © 2026 0bin Label App v1.0
+            </p>
+        </div>
+    </div>
+
+    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js"></script>
+</body>
+</html>