[feat] : 로그아웃 시 Redis에서 refreshToken 삭제 기능 추가 #17

Author: Hyeromon

src/main/java/org/dfbf/soundlink/domain/user/controller/AuthController.java

@@ -29,8 +29,8 @@ public ResponseResult login(@RequestBody LoginReqDto loginReqDto, HttpServletRes
 
     @PostMapping("/logout")
     @Operation(summary = "로그아웃", description = "로그아웃 API")
-    public ResponseResult logout(HttpServletResponse response) {
-        return userService.logout(response);
+    public ResponseResult logout(HttpServletResponse response, HttpServletRequest request) {
+        return userService.logout(response, request);
     }
 
     @PostMapping("/token")

src/main/java/org/dfbf/soundlink/domain/user/service/UserService.java

@@ -208,10 +208,6 @@ public ResponseResult login(LoginReqDto loginReqDto, HttpServletResponse respons
             String accessToken = jwtProvider.createAccessToken(user.getUserId());
             String refreshToken = jwtProvider.createRefreshToken(user.getUserId());
 
-            // 로그로 출력
-            System.out.println("Generated Access Token: " + accessToken);
-            System.out.println("Generated Refresh Token: " + refreshToken);
-
             //refreshToken - 쿠키
             ResponseCookie refreshCookie = getRefreshToken(refreshToken);
             response.setHeader("Set-Cookie", refreshCookie.toString());
@@ -228,7 +224,7 @@ public ResponseResult login(LoginReqDto loginReqDto, HttpServletResponse respons
     }
 
     //로그아웃
-    public ResponseResult logout(HttpServletResponse response) {
+    public ResponseResult logout(HttpServletResponse response, HttpServletRequest request) {
         try {
             //클라이언트 - 토큰 삭제
             ResponseCookie refreshCookie = ResponseCookie
@@ -240,7 +236,12 @@ public ResponseResult logout(HttpServletResponse response) {
                     .build();
             response.setHeader("Set-Cookie", refreshCookie.toString());//쿠키 삭제 요청
 
-            return new ResponseResult(ErrorCode.SUCCESS);
+            String accessToken = jwtProvider.resolveAccessToken(request); // 요청에서 액세스 토큰 추출
+            Long userId = jwtProvider.getUserId(accessToken); // 액세스 토큰을 넘겨서 userId 추출
+
+            tokenService.deleteRefreshToken(userId);
+
+            return new ResponseResult(ErrorCode.SUCCESS,"로그아웃 되었습니다.");
 
         } catch (Exception e) {
             return new ResponseResult(ErrorCode. INTERNAL_SERVER_ERROR,"로그아웃 중 오류가 발생했습니다.");
@@ -261,9 +262,12 @@ public ResponseResult reissueToken(HttpServletRequest request, HttpServletRespon
                 }
             }
         }
+        System.out.println("AccessToken: " + accessToken);
+        System.out.println("RefreshToken from Cookie: " + refreshToken);
+
         // AccessToken과 RefreshToken이 모두 없는 경우
         if (accessToken == null || refreshToken == null) {
-            logout(response);
+            logout(response,request);
             return new ResponseResult(ErrorCode.TOKEN_INVALID, "토큰이 존재하지 않거나 만료되었습니다.");
         }
 
@@ -283,6 +287,8 @@ public ResponseResult reissueToken(HttpServletRequest request, HttpServletRespon
             if (redisRefreshToken != null && redisRefreshToken.equals(refreshToken)) {
                 String newAccessToken = jwtProvider.createAccessToken(userId);
 
+                System.out.println("New AccessToken: " + newAccessToken);
+
                 Map<String, String> responseBody = new HashMap<>();
                 responseBody.put("accessToken", newAccessToken);