refactor: kernelsquare 쪽으로 redirect-uri하는 부분은 암호화하고 OAuth2LoginSuccessHandler에서 쿠키 도메인에 로컬과 prod 환경을 구분해서 넣어야 하는 변수를 각자의 application에서 받도록 수정

mooncw · mooncw · commit 7d6072f04254 · 2024-04-05T14:51:23.000+09:00
diff --git a/member-api/src/main/java/com/kernelsquare/memberapi/common/oauth2/handler/OAuth2LoginSuccessHandler.java b/member-api/src/main/java/com/kernelsquare/memberapi/common/oauth2/handler/OAuth2LoginSuccessHandler.java
@@ -38,6 +38,8 @@ public class OAuth2LoginSuccessHandler implements AuthenticationSuccessHandler {
 
     @Value("${custom.github.redirect}")
     private String githubRedirectUrl;
+    @Value("${custom.cookie.domain}")
+    private String cookieDomain;
 
     @Override
     @Transactional
@@ -66,7 +68,7 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
         String encodedJson = Base64.getEncoder().encodeToString(json.getBytes());
 
         String cookieValue = ResponseCookie.from("loginResponse", encodedJson) // 쿠키 이름과 값 설정
-                .domain(".kernelsquare.live") // 쿠키 도메인 설정 / 로컬에서 돌리실 땐 .localhost로 변경하셔야 합니다.
+                .domain(cookieDomain) // 쿠키 도메인 설정 / 로컬에서 돌리실 땐 .localhost로 변경하셔야 합니다.
                 .maxAge(600) // 최대 유효 시간 설정 (초 단위)
                 .path("/") // 쿠키 경로 설정
                 .build()
diff --git a/member-api/src/main/resources/application-prod1.yml b/member-api/src/main/resources/application-prod1.yml
@@ -10,7 +10,7 @@ spring:
           github:
             client-id: ENC(66P9N3wtvCajPG+go6PfTyX93lPHVjwx1E/soPaKe8C1v6EYP5DYGTcbKfhk0vSE7yOO4tN1aM3E8QvX3dQ6Cg==)
             client-secret: ENC(oeI907n31VpY63HGp2WEzN4WX9dAdUktP57hj6lEYnvWIVMECUNzALVOEGJgecLGoFzcN8sAOo8Ew5KZrmOit+mH2J7x5OXZiuGkhhJ031g=)
-            redirect-uri: https://kernelsquare.live:8000/login/oauth2/code/github
+            redirect-uri: ENC(07XBSlAlpOcNxm9iKpe2P63qgWmjRyFP9mK4TGb5ocvaj7OSLcPx5O92LTP0OVRe8eAeJz9Tg5Zwn42ZP/EGQsRLBI/drqFH3QG1nfdawQMzhd8Drt4wx55sUJpjqgUa)
             scope:
               - user:email
 
@@ -36,6 +36,8 @@ kafka:
 custom:
   github:
     redirect: https://kernelsquare.live/oauth/github
+  cookie:
+    domain: .kernelsquare.live
 
 dbInfo: rds
 
diff --git a/member-api/src/main/resources/application-prod2.yml b/member-api/src/main/resources/application-prod2.yml
@@ -10,7 +10,7 @@ spring:
           github:
             client-id: ENC(66P9N3wtvCajPG+go6PfTyX93lPHVjwx1E/soPaKe8C1v6EYP5DYGTcbKfhk0vSE7yOO4tN1aM3E8QvX3dQ6Cg==)
             client-secret: ENC(oeI907n31VpY63HGp2WEzN4WX9dAdUktP57hj6lEYnvWIVMECUNzALVOEGJgecLGoFzcN8sAOo8Ew5KZrmOit+mH2J7x5OXZiuGkhhJ031g=)
-            redirect-uri: https://kernelsquare.live:8000/login/oauth2/code/github
+            redirect-uri: ENC(07XBSlAlpOcNxm9iKpe2P63qgWmjRyFP9mK4TGb5ocvaj7OSLcPx5O92LTP0OVRe8eAeJz9Tg5Zwn42ZP/EGQsRLBI/drqFH3QG1nfdawQMzhd8Drt4wx55sUJpjqgUa)
             scope:
               - user:email
 
@@ -36,6 +36,8 @@ kafka:
 custom:
   github:
     redirect: https://kernelsquare.live/oauth/github
+  cookie:
+    domain: .kernelsquare.live
 
 dbInfo: rds
 
