Merge pull request #187 from THEGOODs-repo/refactor/186

♻️ Refactor: Cookie 설정 변경
THEGOODs-repo · May 18, 2024 · 135102b · 135102b
2 parents 305fa60 + 603809f
commit 135102b
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/src/main/java/com/umc/TheGoods/service/MemberService/MemberCommandServiceImpl.java b/src/main/java/com/umc/TheGoods/service/MemberService/MemberCommandServiceImpl.java
@@ -179,7 +179,9 @@ public MemberResponseDTO.LoginResultDTO login(MemberRequestDTO.LoginDTO request,
         // refresh 생성후 쿠키로 만들고 response 헤더에 담기
         RefreshToken refreshToken = redisService.generateRefreshToken(request.getEmail());
         Cookie cookie = new Cookie("refreshToken",refreshToken.getToken());
+        cookie.setSecure(true);
         cookie.setHttpOnly(true);
+        cookie.setPath("/");
         response.addCookie(cookie);
 
         LocalDateTime currentDateTime = LocalDateTime.now();
@@ -407,6 +409,8 @@ public MemberResponseDTO.LoginResultDTO emailAuthCreateJWT(MemberRequestDTO.Emai
         RefreshToken refreshToken = redisService.generateRefreshToken(request.getEmail());
         Cookie cookie = new Cookie("refreshToken",refreshToken.getToken());
         cookie.setHttpOnly(true);
+        cookie.setSecure(true);
+        cookie.setPath("/");
         response.addCookie(cookie);
 
         LocalDateTime currentDateTime = LocalDateTime.now();
@@ -527,7 +531,9 @@ public ApiResponse<?> kakaoAuth(String code, HttpServletResponse res) {
             // refresh 생성후 쿠키로 만들고 response 헤더에 담기
             RefreshToken refreshToken = redisService.generateRefreshToken(member.get().getEmail());
             Cookie cookie = new Cookie("refreshToken",refreshToken.getToken());
+            cookie.setSecure(true);
             cookie.setHttpOnly(true);
+            cookie.setPath("/");
             res.addCookie(cookie);
 
 
@@ -630,6 +636,8 @@ public ApiResponse<?> naverAuth(String code, String state, HttpServletResponse r
             RefreshToken refreshToken = redisService.generateRefreshToken(member.get().getEmail());
             Cookie cookie = new Cookie("refreshToken",refreshToken.getToken());
             cookie.setHttpOnly(true);
+            cookie.setSecure(true);
+            cookie.setPath("/");
             res.addCookie(cookie);
 
             return ApiResponse.onSuccess(MemberResponseDTO.LoginResultDTO.builder()