RAC-98 fix : 토큰 발급시 만료시간 포함

WE-ARE-RACCOONS · Oct 31, 2023 · b84caba · b84caba
1 parent 877595e
commit b84caba
Show file tree

Hide file tree

Showing 4 changed files with 15 additions and 8 deletions.
diff --git a/src/main/java/com/postgraduate/domain/auth/application/dto/res/JwtTokenResponse.java b/src/main/java/com/postgraduate/domain/auth/application/dto/res/JwtTokenResponse.java
@@ -1,17 +1,16 @@
 package com.postgraduate.domain.auth.application.dto.res;
 
 import com.postgraduate.domain.user.domain.entity.constant.Role;
-import lombok.AllArgsConstructor;
-import lombok.Builder;
-import lombok.Getter;
-import lombok.NoArgsConstructor;
+import lombok.*;
 
 @Builder
 @Getter
 @NoArgsConstructor
 @AllArgsConstructor
 public class JwtTokenResponse {
     private String accessToken;
+    private int accessExpiration;
     private String refreshToken;
+    private int refreshExpiration;
     private Role role;
 }
diff --git a/src/main/java/com/postgraduate/domain/auth/application/usecase/jwt/JwtUseCase.java b/src/main/java/com/postgraduate/domain/auth/application/usecase/jwt/JwtUseCase.java
@@ -7,13 +7,18 @@
 import com.postgraduate.global.jwt.JwtProvider;
 import jakarta.servlet.http.HttpServletRequest;
 import lombok.RequiredArgsConstructor;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.stereotype.Service;
 
 @RequiredArgsConstructor
 @Service
 public class JwtUseCase {
     private final JwtProvider jwtProvider;
     private final SecurityUtils securityUtils;
+    @Value("${jwt.refreshExpiration}")
+    private int refreshExpiration;
+    @Value("${jwt.accessExpiration}")
+    private int accessExpiration;
 
     public JwtTokenResponse signIn(User user) {
         return generateToken(user);
@@ -28,6 +33,6 @@ public JwtTokenResponse regenerateToken(AuthDetails authDetails, HttpServletRequ
     private JwtTokenResponse generateToken(User user) {
         String accessToken = jwtProvider.generateAccessToken(user.getUserId(), user.getRole());
         String refreshToken = jwtProvider.generateRefreshToken(user.getUserId(), user.getRole());
-        return new JwtTokenResponse(accessToken, refreshToken, user.getRole());
+        return new JwtTokenResponse(accessToken, accessExpiration, refreshToken, refreshExpiration, user.getRole());
     }
 }
diff --git a/src/main/java/com/postgraduate/global/exception/GlobalExceptionHandler.java b/src/main/java/com/postgraduate/global/exception/GlobalExceptionHandler.java
@@ -8,5 +8,4 @@
 @RestControllerAdvice
 @RequiredArgsConstructor
 public class GlobalExceptionHandler {
-
 }
diff --git a/src/main/java/com/postgraduate/global/jwt/JwtProvider.java b/src/main/java/com/postgraduate/global/jwt/JwtProvider.java
@@ -29,11 +29,15 @@ public class JwtProvider {
     private final RedisRepository redisRepository;
     @Value("${jwt.secret-key}")
     private String secret;
+    @Value("${jwt.refreshExpiration}")
+    private int refreshExpiration;
+    @Value("${jwt.accessExpiration}")
+    private int accessExpiration;
     private final String REFRESH = "refresh";
     private final String AUTHORIZATION = "Authorization";
 
     public String generateAccessToken(Long id, Role role) {
-        Instant accessDate = LocalDateTime.now().plusHours(6).atZone(ZoneId.systemDefault()).toInstant();
+        Instant accessDate = LocalDateTime.now().plusSeconds(accessExpiration).atZone(ZoneId.systemDefault()).toInstant();
         return Jwts.builder()
                 .claim("role", role)
                 .setSubject(String.valueOf(id))
@@ -43,7 +47,7 @@ public String generateAccessToken(Long id, Role role) {
     }
 
     public String generateRefreshToken(Long id, Role role) {
-        Instant refreshDate = LocalDateTime.now().plusDays(30).atZone(ZoneId.systemDefault()).toInstant();
+        Instant refreshDate = LocalDateTime.now().plusSeconds(refreshExpiration).atZone(ZoneId.systemDefault()).toInstant();
         String refreshToken = Jwts.builder()
                 .claim("role", role)
                 .setSubject(String.valueOf(id))