Merge pull request #35 from mju-likelion/feature/login-cookie-error-#24

Feature/#24 로그인 시 Cookie 설정 문제
mju-likelion · Feb 28, 2024 · c0b5511 · c0b5511
2 parents 1e9d187 + 6389ae2
commit c0b5511
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 3 deletions.
diff --git a/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java b/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java
@@ -77,6 +77,7 @@ public SecurityFilterChain securityFilterChain(HttpSecurity httpSecurity) throws
                                         .sameSite("None")
                                         .maxAge(ZERO)
                                         .path("/")
+                                        .domain("localhost")
                                         .build();
                                 response.addHeader("Set-Cookie", cookie.toString());
 

diff --git a/src/main/java/org/mjulikelion/baker/service/auth/AuthQueryServiceImpl.java b/src/main/java/org/mjulikelion/baker/service/auth/AuthQueryServiceImpl.java
@@ -6,6 +6,7 @@
 
 import jakarta.servlet.http.HttpServletResponse;
 import java.time.Duration;
+import lombok.extern.slf4j.Slf4j;
 import org.mjulikelion.baker.dto.request.auth.AuthLoginRequestDto;
 import org.mjulikelion.baker.dto.response.ResponseDto;
 import org.mjulikelion.baker.exception.AuthenticationException;
@@ -21,6 +22,7 @@
 import org.springframework.stereotype.Service;
 
 @Service
+@Slf4j
 public class AuthQueryServiceImpl implements AuthQueryService {
     private final AuthenticationManagerBuilder authenticationManagerBuilder;
     private final JwtTokenProvider jwtTokenProvider;
@@ -48,12 +50,14 @@ public ResponseEntity<ResponseDto<Void>> login(AuthLoginRequestDto authLoginRequ
 
             ResponseCookie cookie = ResponseCookie.from(ACCESS_TOKEN, JwtEncoder.encodeJwtBearerToken(jwtToken))
                     .maxAge(Duration.ofMillis(cookieMaxAge))
-                    .secure(true)
-                    .sameSite("None")
+                    .sameSite("None").secure(true)
                     .httpOnly(true)
                     .path(ROOT_PATH)
+                    .domain("localhost")
                     .build();
-            response.addHeader("Set-Cookie", cookie.toString());
+            log.info("cookieString: {}", cookie);
+
+            response.addHeader("set-cookie", cookie.toString());
         } catch (Exception e) {
             throw new AuthenticationException(AUTHENTICATION_ERROR, e.getMessage());
         }