[fix/OPS-402] be 쿠키 인증 오류 수정 (#176)

Kimgooner · web-flow · commit dae796368157 · 2025-10-14T10:49:04.000+09:00
* fix/OPS-402: 오류 수정. * fix/OPS-402: 오류 수정 #2
diff --git a/.github/workflows/prod-server.yml b/.github/workflows/prod-server.yml
@@ -108,6 +108,7 @@ jobs:
               -e JWT_ACCESS_TOKEN_VALIDITY="${{secrets.JWT_ACCESS_TOKEN_VALIDITY}}" \
               -e JWT_REFRESH_TOKEN_VALIDITY="${{secrets.JWT_REFRESH_TOKEN_VALIDITY}}" \
               -e FRONT_REDIRECT_DOMAIN="${{secrets.FRONT_REDIRECT_DOMAIN}}" \
+              -e FRONT_MAIN_DOMAIN="${{secrets.MAIN_DOMAIN}}" \
               -e ELASTIC_HOST="${{secrets.PROD_ELASTIC_HOST}}" \
               ghcr.io/${{ github.repository }}/zoopzoop:latest
             
diff --git a/.github/workflows/test-server-cd.yml b/.github/workflows/test-server-cd.yml
@@ -85,6 +85,7 @@ jobs:
               -e JWT_ACCESS_TOKEN_VALIDITY="${{secrets.JWT_ACCESS_TOKEN_VALIDITY}}" \
               -e JWT_REFRESH_TOKEN_VALIDITY="${{secrets.JWT_REFRESH_TOKEN_VALIDITY}}" \
               -e FRONT_REDIRECT_DOMAIN="${{secrets.TEST_REDIRECT_DOMAIN}}" \
+              -e FRONT_MAIN_DOMAIN="${{secrets.MAIN_DOMAIN}}" \
               -e ELASTIC_HOST="${{secrets.TEST_ELASTIC_HOST}}" \
               ghcr.io/${{ github.repository }}/zoopzoop:latest
 
diff --git a/.github/workflows/test-server-ci.yml b/.github/workflows/test-server-ci.yml
@@ -98,6 +98,7 @@ jobs:
           NAVER_CLIENT_ID: ${{ secrets.NAVER_CLIENT_ID }}
           NAVER_CLIENT_SECRET: ${{ secrets.NAVER_CLIENT_SECRET }}
           LIVEBLOCKS_SECRET_KEY: ${{ secrets.LIVEBLOCKS_SECRET_KEY }}
+          FRONT_MAIN_DOMAIN: ${{secrets.MAIN_DOMAIN}}
         run: ./gradlew test --stacktrace
 
       # 6. 테스트 결과 요약 출력
diff --git a/src/main/java/org/tuna/zoopzoop/backend/domain/auth/handler/OAuth2SuccessHandler.java b/src/main/java/org/tuna/zoopzoop/backend/domain/auth/handler/OAuth2SuccessHandler.java
@@ -41,6 +41,9 @@ public class OAuth2SuccessHandler extends SimpleUrlAuthenticationSuccessHandler
     @Value("${front.redirect_domain}")
     private String redirect_domain;
 
+    @Value("${front.main_domain}")
+    private String main_domain;
+
     @Value("${spring.profiles.active:dev}")
     private String activeProfile;
 
@@ -138,7 +141,7 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
                     .maxAge(jwtProperties.getAccessTokenValidity() / 1000)
                     // .domain() // 프론트엔드 & 백엔드 상위 도메인
                     // .secure(true) // https 필수 설정.
-                    .domain(redirect_domain)
+                    .domain(main_domain)
                     .secure(true)
                     .sameSite("None")
                     .build();
@@ -147,7 +150,7 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
                     .httpOnly(true)
                     .path("/")
                     .maxAge(jwtProperties.getRefreshTokenValidity() / 1000) // RefreshToken 유효기간과 동일하게
-                    .domain(redirect_domain)
+                    .domain(main_domain)
                     .secure(true)
                     .sameSite("None")
                     .build();
diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
@@ -153,4 +153,7 @@ naver:
   client_secret: ${NAVER_CLIENT_SECRET}
 
 liveblocks:
-  secret-key: ${LIVEBLOCKS_SECRET_KEY}
+  secret-key: ${LIVEBLOCKS_SECRET_KEY}
+
+front:
+  main_domain: ${FRONT_MAIN_DOMAIN}
