#471 [feat] RefreshToken 인증 방식 변경

Mile-Writings · Aug 13, 2024 · 91fcdd8 · 91fcdd8
1 parent c36d6ba
commit 91fcdd8
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 3 deletions.
diff --git a/module-api/src/main/java/com/mile/controller/user/UserController.java b/module-api/src/main/java/com/mile/controller/user/UserController.java
@@ -4,17 +4,21 @@
 import com.mile.common.resolver.user.UserId;
 import com.mile.controller.user.facade.AuthFacade;
 import com.mile.dto.SuccessResponse;
+import com.mile.exception.message.ErrorMessage;
 import com.mile.exception.message.SuccessMessage;
+import com.mile.exception.model.BadRequestException;
 import com.mile.moim.service.dto.MoimListOfUserResponse;
 import com.mile.user.service.UserService;
 import com.mile.user.service.dto.AccessTokenGetSuccess;
 import com.mile.user.service.dto.LoginSuccessResponse;
+import jakarta.servlet.http.Cookie;
 import jakarta.servlet.http.HttpServletResponse;
 import jakarta.validation.Valid;
 import lombok.RequiredArgsConstructor;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseCookie;
 import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.CookieValue;
 import org.springframework.web.bind.annotation.DeleteMapping;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PostMapping;
@@ -29,7 +33,7 @@
 public class UserController implements UserControllerSwagger {
 
     private final AuthFacade authFacade;
-    private final static int COOKIE_MAX_AGE = 7 * 24 * 60 * 60;
+    private final static Long COOKIE_MAX_AGE = 60 * 60 * 24 * 1000L * 14;
     private final static String REFRESH_TOKEN = "refreshToken";
 
     @PostMapping("/login")
@@ -56,8 +60,9 @@ public ResponseEntity<SuccessResponse<AccessTokenGetSuccess>> login(
     @Override
     public SuccessResponse<AccessTokenGetSuccess> refreshToken(
             @UserId Long userId,
-            @RequestParam final String refreshToken
+            @CookieValue(name = REFRESH_TOKEN) Cookie cookie
     ) {
+        String refreshToken = cookie.getValue();
         return SuccessResponse.of(SuccessMessage.ISSUE_ACCESS_TOKEN_SUCCESS, authFacade.refreshToken(userId, refreshToken));
     }
 

diff --git a/module-api/src/main/java/com/mile/controller/user/UserControllerSwagger.java b/module-api/src/main/java/com/mile/controller/user/UserControllerSwagger.java
@@ -14,8 +14,10 @@
 import io.swagger.v3.oas.annotations.responses.ApiResponse;
 import io.swagger.v3.oas.annotations.responses.ApiResponses;
 import io.swagger.v3.oas.annotations.tags.Tag;
+import jakarta.servlet.http.Cookie;
 import jakarta.servlet.http.HttpServletResponse;
 import org.springframework.http.ResponseEntity;
+import org.springframework.web.bind.annotation.CookieValue;
 import org.springframework.web.bind.annotation.RequestBody;
 import org.springframework.web.bind.annotation.RequestParam;
 
@@ -49,7 +51,7 @@ ResponseEntity<SuccessResponse<AccessTokenGetSuccess>> login(
     )
     SuccessResponse<AccessTokenGetSuccess> refreshToken(
             @Parameter(schema = @Schema(implementation = String.class), in = ParameterIn.PATH) @UserId Long userId,
-            @RequestParam final String refreshToken
+            @CookieValue Cookie cookie
     );
 
     @Operation(summary = "로그아웃")