[FIX] access token parsing할 때 오류 로그 추가

kaswhy · web-flow · commit 0fe8b26c0038 · 2025-04-01T00:11:17.000+09:00
diff --git a/gdgoc/src/main/java/inha/gdgoc/GdgocApplication.java b/gdgoc/src/main/java/inha/gdgoc/GdgocApplication.java
@@ -1,5 +1,7 @@
 package inha.gdgoc;
 
+import jakarta.annotation.PostConstruct;
+import java.util.TimeZone;
 import org.springframework.boot.SpringApplication;
 import org.springframework.boot.autoconfigure.SpringBootApplication;
 import org.springframework.data.jpa.repository.config.EnableJpaAuditing;
@@ -13,4 +15,9 @@ public static void main(String[] args) {
 		SpringApplication.run(GdgocApplication.class, args);
 	}
 
+	@PostConstruct
+	public void init() {
+		TimeZone.setDefault(TimeZone.getTimeZone("Asia/Seoul"));
+	}
+
 }
diff --git a/gdgoc/src/main/java/inha/gdgoc/config/TokenAuthenticationFilter.java b/gdgoc/src/main/java/inha/gdgoc/config/TokenAuthenticationFilter.java
@@ -46,11 +46,27 @@ protected void doFilterInternal(
     }
 
     private String getAccessToken(HttpServletRequest request) {
-        String HEADER_AUTHORIZATION = "Authorization";
-        String TOKEN_PREFIX = "Bearer ";
+        final String HEADER_AUTHORIZATION = "Authorization";
+        final String TOKEN_PREFIX = "Bearer ";
 
         String bearerToken = request.getHeader(HEADER_AUTHORIZATION);
 
-        return (bearerToken != null && bearerToken.startsWith(TOKEN_PREFIX)) ? bearerToken.substring(7) : null;
+        if (bearerToken == null || !bearerToken.startsWith(TOKEN_PREFIX)) {
+            return null;
+        }
+
+        String token = bearerToken.substring(TOKEN_PREFIX.length());
+
+        token = token.trim();
+
+        for (char c : token.toCharArray()) {
+            if (c < 32) {
+                log.info("토큰에 유효하지 않은 제어 문자가 포함되어 있습니다.");
+                throw new IllegalArgumentException("토큰에 유효하지 않은 제어 문자가 포함되어 있습니다.");
+            }
+        }
+
+        return token;
     }
+
 }
