feat(gateway): API Key 인증 + HTTPS (Caddy) 보안 강화

- gateway.py: auth middleware — /api/* 엔드포인트에 Bearer token 필수 - Caddyfile: Let's Encrypt 자동 HTTPS 리버스 프록시 - docker-compose.yml: Caddy 추가, Gateway 포트 내부 전용 - config.py: GATEWAY_API_KEY 설정 추가 - .env: 키 생성 명령어 가이드 포함
2026-03-11 19:49:24 +09:00
parent 6dbbb57fa7
commit 95da3e9307
5 changed files with 57 additions and 7 deletions
--- a/main.py
+++ b/main.py
@@ -84,7 +84,7 @@ async def main():
        if Config.BOT_MODE == 'gateway':
            from gateway import GatewayAPI
            gateway_port = int(os.environ.get('GATEWAY_PORT', '8585'))
-            gateway = GatewayAPI(bot, port=gateway_port)
+            gateway = GatewayAPI(bot, port=gateway_port, api_key=Config.GATEWAY_API_KEY)
            await gateway.start()
            logger.info(f"Gateway API running on port {gateway_port}")