BCSDLab · dh2906 · Feb 25, 2026 · Feb 25, 2026 · Feb 25, 2026 · Feb 25, 2026
diff --git a/build.gradle b/build.gradle
@@ -30,6 +30,7 @@ dependencies {
     implementation 'org.springframework.boot:spring-boot-starter-data-jpa'
     implementation 'org.springframework.boot:spring-boot-starter-security'
     implementation 'org.springframework.boot:spring-boot-starter-actuator'
+    implementation 'org.springframework.boot:spring-boot-starter-aop'
     implementation 'org.springframework.retry:spring-retry'
     implementation 'org.springframework.boot:spring-boot-starter-data-redis'
 

diff --git a/src/main/java/gg/agit/konect/domain/user/controller/UserController.java b/src/main/java/gg/agit/konect/domain/user/controller/UserController.java
@@ -10,6 +10,7 @@
 import gg.agit.konect.domain.user.dto.UserInfoResponse;
 import gg.agit.konect.domain.user.service.RefreshTokenService;
 import gg.agit.konect.domain.user.service.SignupTokenService;
+import gg.agit.konect.domain.user.service.UserActivityService;
 import gg.agit.konect.domain.user.service.UserService;
 import gg.agit.konect.global.auth.jwt.JwtProvider;
 import gg.agit.konect.global.auth.annotation.PublicApi;
@@ -29,6 +30,7 @@ public class UserController implements UserApi {
     private final SignupTokenService signupTokenService;
     private final JwtProvider jwtProvider;
     private final RefreshTokenService refreshTokenService;
+    private final UserActivityService userActivityService;
     private final AuthCookieService authCookieService;
 
     @Override
@@ -75,6 +77,7 @@ public ResponseEntity<Void> logout(HttpServletRequest request, HttpServletRespon
     public ResponseEntity<UserAccessTokenResponse> refresh(HttpServletRequest request, HttpServletResponse response) {
         String refreshToken = authCookieService.getCookieValue(request, AuthCookieService.REFRESH_TOKEN_COOKIE);
         RefreshTokenService.Rotated rotated = refreshTokenService.rotate(refreshToken);
+        userActivityService.updateLastLoginAt(rotated.userId());
 
         String accessToken = jwtProvider.createToken(rotated.userId());
         authCookieService.setRefreshToken(request, response, rotated.refreshToken(), refreshTokenService.refreshTtl());

diff --git a/src/main/java/gg/agit/konect/domain/user/model/User.java b/src/main/java/gg/agit/konect/domain/user/model/User.java
@@ -4,6 +4,8 @@
 import static jakarta.persistence.GenerationType.IDENTITY;
 import static lombok.AccessLevel.PROTECTED;
 
+import java.time.LocalDateTime;
+
 import gg.agit.konect.domain.university.model.University;
 import gg.agit.konect.domain.user.enums.Provider;
 import gg.agit.konect.domain.user.enums.UserRole;
@@ -90,6 +92,12 @@ public class User extends BaseEntity {
     @Column(name = "apple_refresh_token", length = 1024)
     private String appleRefreshToken;
 
+    @Column(name = "last_login_at", columnDefinition = "TIMESTAMP")
+    private LocalDateTime lastLoginAt;
+
+    @Column(name = "last_activity_at", columnDefinition = "TIMESTAMP")
-    @Column(name = "last_login_at", columnDefinition = "TIMESTAMP")
-    private LocalDateTime lastLoginAt;
-
-    @Column(name = "last_activity_at", columnDefinition = "TIMESTAMP")
+    @Column(name = "last_login_at")
+    private LocalDateTime lastLoginAt;
+
+    @Column(name = "last_activity_at")
-    @Column(name = "last_login_at", columnDefinition = "TIMESTAMP")
-    private LocalDateTime lastLoginAt;
-
-    @Column(name = "last_activity_at", columnDefinition = "TIMESTAMP")
+    @Column(name = "last_login_at")
+    private LocalDateTime lastLoginAt;
+
+    @Column(name = "last_activity_at")
+    private LocalDateTime lastActivityAt;
+
     @Builder
     private User(
         Integer id,
@@ -171,4 +179,13 @@ public boolean isAdmin() {
     public void updateAppleRefreshToken(String appleRefreshToken) {
         this.appleRefreshToken = appleRefreshToken;
     }
+
+    public void updateLastLoginAt(LocalDateTime lastLoginAt) {
+        this.lastLoginAt = lastLoginAt;
+        this.lastActivityAt = lastLoginAt;
+    }
+
+    public void updateLastActivityAt(LocalDateTime lastActivityAt) {
+        this.lastActivityAt = lastActivityAt;
+    }
 }
diff --git a/src/main/java/gg/agit/konect/domain/user/service/UserActivityService.java b/src/main/java/gg/agit/konect/domain/user/service/UserActivityService.java
@@ -0,0 +1,35 @@
+package gg.agit.konect.domain.user.service;
+
+import java.time.LocalDateTime;
+
+import org.springframework.stereotype.Service;
+import org.springframework.transaction.annotation.Transactional;
+
+import gg.agit.konect.domain.user.repository.UserRepository;
+import lombok.RequiredArgsConstructor;
+
+@Service
+@RequiredArgsConstructor
+@Transactional(readOnly = true)
+public class UserActivityService {
+
+    private final UserRepository userRepository;
+
+    @Transactional
+    public void updateLastLoginAt(Integer userId) {
+        if (userId == null) {
+            return;
+        }
+
+        userRepository.getById(userId).updateLastLoginAt(LocalDateTime.now());
+    }
+
+    @Transactional
+    public void updateLastActivityAt(Integer userId) {
+        if (userId == null) {
+            return;
+        }
+
+        userRepository.getById(userId).updateLastActivityAt(LocalDateTime.now());
+    }
+}
diff --git a/src/main/java/gg/agit/konect/global/auth/aop/UserActivityUpdateAspect.java b/src/main/java/gg/agit/konect/global/auth/aop/UserActivityUpdateAspect.java
@@ -0,0 +1,34 @@
+package gg.agit.konect.global.auth.aop;
+
+import org.aspectj.lang.annotation.After;
+import org.aspectj.lang.annotation.Aspect;
+import org.springframework.stereotype.Component;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import gg.agit.konect.domain.user.service.UserActivityService;
+import gg.agit.konect.global.auth.web.LoginCheckInterceptor;
+import jakarta.servlet.http.HttpServletRequest;
+import lombok.RequiredArgsConstructor;
+
+@Aspect
+@Component
+@RequiredArgsConstructor
+public class UserActivityUpdateAspect {
+
+    private final UserActivityService userActivityService;
+
+    @After("execution(* gg.agit.konect..controller..*(..))")
+    public void updateLastActivity() {
+        ServletRequestAttributes attributes = (ServletRequestAttributes)RequestContextHolder.getRequestAttributes();
+        if (attributes == null) {
+            return;
+        }
+
+        HttpServletRequest request = attributes.getRequest();
-        ServletRequestAttributes attributes = (ServletRequestAttributes)RequestContextHolder.getRequestAttributes();
-        if (attributes == null) {
-            return;
-        }
-
-        HttpServletRequest request = attributes.getRequest();
+        Object attributes = RequestContextHolder.getRequestAttributes();
+        if (attributes == null || !(attributes instanceof ServletRequestAttributes)) {
+            return;
+        }
+
+        HttpServletRequest request = ((ServletRequestAttributes) attributes).getRequest();
-        ServletRequestAttributes attributes = (ServletRequestAttributes)RequestContextHolder.getRequestAttributes();
-        if (attributes == null) {
-            return;
-        }
-
-        HttpServletRequest request = attributes.getRequest();
+        Object attributes = RequestContextHolder.getRequestAttributes();
+        if (attributes == null || !(attributes instanceof ServletRequestAttributes)) {
+            return;
+        }
+
+        HttpServletRequest request = ((ServletRequestAttributes) attributes).getRequest();
+        Object userId = request.getAttribute(LoginCheckInterceptor.AUTHENTICATED_USER_ID_ATTRIBUTE);
+        if (userId instanceof Integer authenticatedUserId) {
+            userActivityService.updateLastActivityAt(authenticatedUserId);
+        }
+    }
+}
diff --git a/src/main/resources/db/migration/V38__add_last_login_and_last_activity_to_users.sql b/src/main/resources/db/migration/V38__add_last_login_and_last_activity_to_users.sql
@@ -0,0 +1,3 @@
+ALTER TABLE users
+    ADD COLUMN last_login_at DATETIME NULL,
+    ADD COLUMN last_activity_at DATETIME NULL;