보안 점검 및 대시보드 문구 수정

app/api/kis/domestic/order-cash/route.ts

@@ -4,6 +4,7 @@ import {
   DashboardStockCashOrderRequest,
   DashboardStockCashOrderResponse,
 } from "@/features/trade/types/trade.types";
+import { hasKisApiSession } from "@/app/api/kis/_session";
 import {
   KisCredentialInput,
   hasKisConfig,
@@ -17,12 +18,25 @@ import {
 
 export async function POST(request: NextRequest) {
   const credentials = readKisCredentialsFromHeaders(request.headers);
+  const tradingEnv = normalizeTradingEnv(credentials.tradingEnv);
+
+  const hasSession = await hasKisApiSession();
+  if (!hasSession) {
+    return NextResponse.json(
+      {
+        ok: false,
+        tradingEnv,
+        message: "로그인이 필요합니다.",
+      },
+      { status: 401 },
+    );
+  }
 
   if (!hasKisConfig(credentials)) {
     return NextResponse.json(
       {
         ok: false,
-        tradingEnv: normalizeTradingEnv(credentials.tradingEnv),
+        tradingEnv,
         message: "KIS API 키 설정이 필요합니다.",
       },
       { status: 400 },
@@ -42,7 +56,7 @@ export async function POST(request: NextRequest) {
       return NextResponse.json(
         {
           ok: false,
-          tradingEnv: normalizeTradingEnv(credentials.tradingEnv),
+          tradingEnv,
           message:
             "주문 정보가 올바르지 않습니다. (종목코드, 계좌번호, 수량 확인)",
         },
@@ -65,7 +79,7 @@ export async function POST(request: NextRequest) {
 
     const response: DashboardStockCashOrderResponse = {
       ok: true,
-      tradingEnv: normalizeTradingEnv(credentials.tradingEnv),
+      tradingEnv,
       message: "주문이 전송되었습니다.",
       orderNo: output.ODNO,
       orderTime: output.ORD_TMD,
@@ -81,7 +95,7 @@ export async function POST(request: NextRequest) {
     return NextResponse.json(
       {
         ok: false,
-        tradingEnv: normalizeTradingEnv(credentials.tradingEnv),
+        tradingEnv,
         message,
       },
       { status: 500 },