From d7dad90720e3e7ebececc252de1759c822b5c853 Mon Sep 17 00:00:00 2001
From: bum12ark <bum12ark@gmail.com>
Date: Fri, 18 Feb 2022 12:06:30 +0900
Subject: [PATCH] =?UTF-8?q?feat(user-service):=20login=20=EA=B8=B0?=
 =?UTF-8?q?=EB=8A=A5=20=EB=B0=8F=20cookie=20=EC=83=9D=EC=84=B1=20=EB=B6=80?=
 =?UTF-8?q?=EB=B6=84=20=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- login 시 refresh token parameter cookie 로 변경
- cookie 생성 시 secure false 로 변경
---
 .../userservice/domain/jwt/web/AuthController.java         | 7 ++-----
 .../userservice/global/utils/CookieProvider.java           | 2 +-
 2 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/user-service/src/main/java/com/justpickup/userservice/domain/jwt/web/AuthController.java b/user-service/src/main/java/com/justpickup/userservice/domain/jwt/web/AuthController.java
index c814285..39cfd79 100644
--- a/user-service/src/main/java/com/justpickup/userservice/domain/jwt/web/AuthController.java
+++ b/user-service/src/main/java/com/justpickup/userservice/domain/jwt/web/AuthController.java
@@ -12,10 +12,7 @@ import lombok.extern.slf4j.Slf4j;
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseCookie;
 import org.springframework.http.ResponseEntity;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestHeader;
-import org.springframework.web.bind.annotation.RestController;
+import org.springframework.web.bind.annotation.*;
 
 import javax.ws.rs.core.HttpHeaders;
 
@@ -29,7 +26,7 @@ public class AuthController {
 
     @GetMapping("/refreshToken")
     public ResponseEntity<Result> refreshToken(@RequestHeader("X-AUTH-TOKEN") String accessToken,
-                                               @RequestHeader("REFRESH-TOKEN") String refreshToken) {
+                                               @CookieValue("refresh-token") String refreshToken) {
 
         JwtTokenDto jwtTokenDto = refreshTokenServiceImpl.refreshJwtToken(accessToken, refreshToken);
 
diff --git a/user-service/src/main/java/com/justpickup/userservice/global/utils/CookieProvider.java b/user-service/src/main/java/com/justpickup/userservice/global/utils/CookieProvider.java
index 3641bf0..3290a33 100644
--- a/user-service/src/main/java/com/justpickup/userservice/global/utils/CookieProvider.java
+++ b/user-service/src/main/java/com/justpickup/userservice/global/utils/CookieProvider.java
@@ -15,7 +15,7 @@ public class CookieProvider {
     public ResponseCookie createRefreshTokenCookie(String refreshToken) {
         return ResponseCookie.from("refresh-token", refreshToken)
                 .httpOnly(true)
-                .secure(true)
+                .secure(false)
                 .path("/")
                 .maxAge(Long.parseLong(refreshTokenExpiredTime)).build();
     }