sazzeo · sazzeo · Aug 9, 2022 · Aug 9, 2022
diff --git a/d-gateway/build.gradle b/d-gateway/build.gradle
@@ -11,6 +11,9 @@ dependencies {
     implementation 'org.springframework.cloud:spring-cloud-starter-netflix-eureka-client'
     implementation 'org.springframework.cloud:spring-cloud-starter-gateway:3.1.3'
     implementation 'io.jsonwebtoken:jjwt:0.9.1'
+
+    //jwt토큰 parsing 하는데  Base64로 인코딩하는데 자바 11버전 부터는 기본 설정이 되지 않아 추가해야함.
+    implementation 'javax.xml.bind:jaxb-api:2.3.1'
 }
 
 //버전 알아서 찾아주는 애

diff --git a/d-gateway/src/main/java/com/example/gateway/filter/AuthorizationHeaderFilter.java b/d-gateway/src/main/java/com/example/gateway/filter/AuthorizationHeaderFilter.java
@@ -56,6 +56,9 @@ public GatewayFilter apply(Config config) {
 
     }
 
+
+    //Mono 객체 : webflux에서 데이터 전달하는 객체임
+    //여기서 설정하는 httpstatus가 실제 response 되는 status가 됨.
     private Mono<Void> onError( ServerHttpResponse response , String err, HttpStatus httpStatus)  {
         response.setStatusCode(httpStatus);
         log.error(err);

diff --git a/d-gateway/src/main/java/com/example/gateway/security/JwtTokenParser.java b/d-gateway/src/main/java/com/example/gateway/security/JwtTokenParser.java
@@ -1,6 +1,8 @@
 package com.example.gateway.security;
 
 import com.example.gateway.vo.UserDto;
+import io.jsonwebtoken.Claims;
+import io.jsonwebtoken.Jws;
 import io.jsonwebtoken.Jwts;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.stereotype.Component;
@@ -14,7 +16,10 @@ public class JwtTokenParser {
 
     public String getTokenSubject(String token) {
 
-        String subject = Jwts.parser().parseClaimsJws(token).getBody().getSubject();
+        String subject = Jwts.parser()
+                .setSigningKey(SECRET_KEY)
+                .parseClaimsJws(token)
+                .getBody().getSubject();
         return subject;
 
     }
@@ -32,11 +37,14 @@ public boolean isBearerToken(String bearerToken) {
     public boolean isValidToken(String validBearerToken) {
 
         try {
-            String subject = Jwts.parser().parseClaimsJws(validBearerToken).getBody().getSubject();
+            Jws<Claims> claimsJws = Jwts.parser()
+                    .setSigningKey(SECRET_KEY)
+                    .parseClaimsJws(validBearerToken);
+            return true;
         } catch (Exception e) {
+            log.info(e.getMessage());
             return false;
         }
-        return true;
     }
 
     public String getToken(String validBearerToken) {

diff --git a/d-user-service/src/main/java/com/example/duserservice/security/JwtTokenProvider.java b/d-user-service/src/main/java/com/example/duserservice/security/JwtTokenProvider.java
@@ -22,6 +22,7 @@ public String getBearerToken(UserDto userDto) {
 
         String token = Jwts.builder()
                 .setSubject(userDto.getUserId())  //아이디 설정
+                .setIssuedAt(new Date())
                 .setExpiration(new Date(now.getTime() + EXPIRATION_TIME))        //만료 시간
                 .signWith(SignatureAlgorithm.HS512 , SECRET_KEY)
                 .compact();