refactor: jwt 토큰값 추가 (name)

Author: sapiens2000

src/main/java/com/example/log4u/common/oauth2/controller/OAuth2Controller.java

@@ -3,11 +3,12 @@
 import org.springframework.http.HttpStatus;
 import org.springframework.http.ResponseEntity;
 import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RestController;
 
 import com.example.log4u.common.oauth2.jwt.JwtUtil;
+import com.example.log4u.common.oauth2.repository.RefreshTokenRepository;
+import com.example.log4u.common.oauth2.service.RefreshTokenService;
 
 import io.jsonwebtoken.ExpiredJwtException;
 import jakarta.servlet.http.Cookie;
@@ -21,10 +22,12 @@
 public class OAuth2Controller {
 
 	private final JwtUtil jwtUtil;
-	
+	private final RefreshTokenService refreshTokenService;
+	private final RefreshTokenRepository refreshTokenRepository;
+
 	@GetMapping("/token/reissue")
 	public ResponseEntity<?> reissue(
-		HttpServletRequest request, 
+		HttpServletRequest request,
 		HttpServletResponse response
 	) {
 		// 리프레시 토큰 추출
@@ -35,44 +38,54 @@ public ResponseEntity<?> reissue(
 			if (cookie.getName().equals("refresh")) {
 				refresh = cookie.getValue();
 			}
-			if( cookie.getName().equals("access") ) {
+			if (cookie.getName().equals("access")) {
 				access = cookie.getValue();
 			}
 		}
 
-		// if (refresh == null) {
-		// 	// 리프레시 토큰이 없는 경우
-		// 	return new ResponseEntity<>("잘못된 요청입니다..", HttpStatus.BAD_REQUEST);
-		// }
+		if (refresh == null) {
+			// 리프레시 토큰이 없는 경우
+			return new ResponseEntity<>("잘못된 요청입니다..", HttpStatus.BAD_REQUEST);
+		}
 
 		// 리프레시 토큰 만료 체크
-		// try {
-		// 	jwtUtil.isExpired(refresh);
-		// } catch (ExpiredJwtException e) {
-		// 	return new ResponseEntity<>("리프레시 토큰이 만료되었습니다.", HttpStatus.UNAUTHORIZED);
-		// }
+		try {
+			jwtUtil.isExpired(refresh);
+		} catch (ExpiredJwtException e) {
+			return new ResponseEntity<>("리프레시 토큰이 만료되었습니다.", HttpStatus.UNAUTHORIZED);
+		}
 
 		// 토큰이 refresh인지 확인 (발급시 페이로드에 명시)
-		// String category = jwtUtil.getCategory(refresh);
-		// if (!category.equals("refresh")) {
-		// 	return new ResponseEntity<>("잘못된 토큰입니다.", HttpStatus.BAD_REQUEST);
-		// }
+		String category = jwtUtil.getTokenType(refresh);
+		if (!category.equals("refresh")) {
+			return new ResponseEntity<>("잘못된 토큰입니다.", HttpStatus.BAD_REQUEST);
+		}
+
+		createNewTokens(response, access, refresh);
+		return new ResponseEntity<>(HttpStatus.OK);
+	}
+
+	private void createNewTokens(HttpServletResponse response, String access, String refresh) {
+		// 기존 리프레시 토큰 삭제
+		refreshTokenRepository.deleteByRefresh(refresh);
 
 		Long userId = jwtUtil.getUserId(access);
 		String role = jwtUtil.getRole(access);
+		String name = jwtUtil.getName(access);
 
-		// 액세스 토큰 새로 생성
-		String newAccessToken = jwtUtil.createJwt("access", userId, role, 600000L);
-		String newRefreshToken = jwtUtil.createJwt("refresh", userId, role, 600000L);
-
-		// 액세스 토큰 헤더 설정
-		//response.setHeader("access", newAccessToken);
+		String newAccessToken = jwtUtil.createJwt("access", userId, name, role, 600000L);
+		String newRefreshToken = jwtUtil.createJwt("refresh", userId, name, role, 600000L);
 
-		// Refresh Token Rotate
 		response.addCookie(createCookie("refresh", newRefreshToken));
 		response.addCookie(createCookie("access", newAccessToken));
 
-		return new ResponseEntity<>(HttpStatus.OK);
+		// 새 리프레시 토큰 저장
+		refreshTokenService.saveRefreshToken(
+			userId,
+			name,
+			refresh
+		);
+
 	}
 
 	private Cookie createCookie(String key, String value) {

src/main/java/com/example/log4u/common/oauth2/handler/OAuth2AuthenticationSuccessHandler.java

@@ -2,7 +2,6 @@
 
 import java.io.IOException;
 import java.util.Collection;
-import java.util.Date;
 import java.util.Iterator;
 import java.util.Optional;
 
@@ -14,9 +13,8 @@
 import org.springframework.stereotype.Component;
 
 import com.example.log4u.common.oauth2.dto.CustomOAuth2User;
-import com.example.log4u.common.oauth2.entity.RefreshToken;
 import com.example.log4u.common.oauth2.jwt.JwtUtil;
-import com.example.log4u.common.oauth2.repository.RefreshTokenRepository;
+import com.example.log4u.common.oauth2.service.RefreshTokenService;
 import com.example.log4u.domain.user.entity.User;
 import com.example.log4u.domain.user.repository.UserRepository;
 
@@ -30,7 +28,7 @@
 public class OAuth2AuthenticationSuccessHandler extends SimpleUrlAuthenticationSuccessHandler {
 
 	private final UserRepository userRepository;
-	private final RefreshTokenRepository refreshTokenRepository;
+	private final RefreshTokenService refreshTokenService;
 	private final JwtUtil jwtUtil;
 
 	private static final String MAIN_PAGE = "http://localhost:3000/";
@@ -80,17 +78,17 @@ private void setCookieAndSaveRefreshToken(
 		String role = auth.getAuthority();
 
 		// 쿠키 생성
-		String access = jwtUtil.createJwt(ACCESS_TOKEN_KEY, userId, role, accessTokenValidityInSeconds);
-		String refresh = jwtUtil.createJwt(REFRESH_TOKEN_KEY, userId, role, refreshTokenValidityInSeconds);
+		String access = jwtUtil.createJwt(ACCESS_TOKEN_KEY, userId, name, role, accessTokenValidityInSeconds);
+		String refresh = jwtUtil.createJwt(REFRESH_TOKEN_KEY, userId, name, role, refreshTokenValidityInSeconds);
 		// 저장
-		saveRefreshToken(refresh, name);
+		refreshTokenService.saveRefreshToken(null, name, refresh);
 
 		response.addCookie(createCookie(ACCESS_TOKEN_KEY, access));
 		response.addCookie(createCookie(REFRESH_TOKEN_KEY, refresh));
 		response.setStatus(HttpStatus.OK.value());
 	}
 
-	public void redirectTo(HttpServletResponse response, String redirectUrl) throws IOException {
+	private void redirectTo(HttpServletResponse response, String redirectUrl) throws IOException {
 		response.sendRedirect(redirectUrl);
 	}
 
@@ -103,15 +101,4 @@ private Cookie createCookie(String key, String value) {
 		return cookie;
 	}
 
-	public void saveRefreshToken(String refresh, String name) {
-		Date date = new Date(System.currentTimeMillis() + refreshTokenValidityInSeconds);
-
-		RefreshToken refreshToken = new RefreshToken(
-			null,
-			name,
-			refresh,
-			date.toString()
-		);
-		refreshTokenRepository.save(refreshToken);
-	}
 }

src/main/java/com/example/log4u/common/oauth2/jwt/JwtUtil.java

@@ -18,7 +18,9 @@ public class JwtUtil {
 	private final SecretKey secretKey;
 	private static final String USER_ID_KEY = "userId";
 	private static final String TOKEN_TYPE_KEY = "token";
-	
+	private static final String USER_NAME_KEY = "name";
+	private static final String USER_ROLE_KEY = "role";
+
 	public JwtUtil(@Value("${jwt.secret}") String secret) {
 		secretKey = new SecretKeySpec(secret.getBytes(StandardCharsets.UTF_8),
 			Jwts.SIG.HS256.key().build().getAlgorithm());
@@ -32,11 +34,24 @@ public Long getUserId(String token) {
 				.parseSignedClaims(token)
 				.getPayload()
 				.get(USER_ID_KEY, Long.class);
-		} catch(ExpiredJwtException ex){
+		} catch (ExpiredJwtException ex) {
 			return ex.getClaims().get(USER_ID_KEY, Long.class);
 		}
 	}
 
+	public String getName(String token) {
+		try {
+			return Jwts.parser()
+				.verifyWith(secretKey)
+				.build()
+				.parseSignedClaims(token)
+				.getPayload()
+				.get(USER_NAME_KEY, String.class);
+		} catch (ExpiredJwtException ex) {
+			return ex.getClaims().get(USER_NAME_KEY, String.class);
+		}
+	}
+
 	public String getRole(String token) {
 		try {
 			return Jwts.parser()
@@ -45,8 +60,8 @@ public String getRole(String token) {
 				.parseSignedClaims(token)
 				.getPayload()
 				.get("role", String.class);
-		}catch(ExpiredJwtException ex){
-			return ex.getClaims().get("role", String.class);
+		} catch (ExpiredJwtException ex) {
+			return ex.getClaims().get(USER_ROLE_KEY, String.class);
 		}
 	}
 
@@ -58,7 +73,7 @@ public String getTokenType(String token) {
 				.parseSignedClaims(token)
 				.getPayload()
 				.get(TOKEN_TYPE_KEY, String.class);
-		}catch(ExpiredJwtException ex){
+		} catch (ExpiredJwtException ex) {
 			return ex.getClaims().get(TOKEN_TYPE_KEY, String.class);
 		}
 	}
@@ -73,13 +88,14 @@ public Boolean isExpired(String token) {
 			.before(new Date());
 	}
 
-	public String createJwt(String tokenType, Long userId, String role, Long expiredMs) {
+	public String createJwt(String tokenType, Long userId, String name, String role, Long expiredMs) {
 		return Jwts.builder()
 			.claim(TOKEN_TYPE_KEY, tokenType)
 			.claim(USER_ID_KEY, userId)
+			.claim(USER_NAME_KEY, name)
 			.claim("role", role)
 			.issuedAt(new Date(System.currentTimeMillis()))
-			.expiration(new Date(System.currentTimeMillis() + expiredMs*1000))
+			.expiration(new Date(System.currentTimeMillis() + expiredMs * 1000))
 			.signWith(secretKey)
 			.compact();
 	}

src/main/java/com/example/log4u/common/oauth2/service/RefreshTokenService.java

@@ -0,0 +1,33 @@
+package com.example.log4u.common.oauth2.service;
+
+import java.util.Date;
+
+import org.springframework.beans.factory.annotation.Value;
+import org.springframework.stereotype.Service;
+
+import com.example.log4u.common.oauth2.entity.RefreshToken;
+import com.example.log4u.common.oauth2.repository.RefreshTokenRepository;
+
+import lombok.RequiredArgsConstructor;
+
+@Service
+@RequiredArgsConstructor
+public class RefreshTokenService {
+
+	private final RefreshTokenRepository refreshTokenRepository;
+
+	@Value("${jwt.refresh-token-expire-time-seconds}")
+	private long refreshTokenValidityInSeconds;
+
+	public void saveRefreshToken(Long userId, String refresh, String name) {
+		Date date = new Date(System.currentTimeMillis() + refreshTokenValidityInSeconds);
+
+		RefreshToken refreshToken = new RefreshToken(
+			userId,
+			name,
+			refresh,
+			date.toString()
+		);
+		refreshTokenRepository.save(refreshToken);
+	}
+}