Merge pull request #92 from ON-GI/develop

mii2026 · web-flow · commit 7a7026e8b3bb · 2025-02-20T10:39:33.000+09:00
쿠키 security 설정 변경 배포 (ssl 오류 fix)
diff --git a/src/main/java/com/ongi/backend/domain/auth/controller/AuthController.java b/src/main/java/com/ongi/backend/domain/auth/controller/AuthController.java
@@ -55,7 +55,7 @@ public CommonResponse<LoginResponse> refreshAccessToken(HttpServletRequest httpS
     private void setRefreshTokenCookie(HttpServletResponse response, String refreshToken) {
         Cookie cookie = new Cookie("refresh_token", refreshToken);
         cookie.setHttpOnly(true);
-        cookie.setSecure(true);
+        cookie.setSecure(false);
         cookie.setPath("/");
         cookie.setAttribute("SameSite", "None");
         cookie.setMaxAge((int) (REFRESH_TOKEN_EXPIRATION / 1000));
@@ -65,8 +65,9 @@ private void setRefreshTokenCookie(HttpServletResponse response, String refreshT
     private void deleteRefreshTokenCookie(HttpServletResponse response) {
         Cookie refreshTokenCookie = new Cookie("refresh_token", null);
         refreshTokenCookie.setHttpOnly(true);
-        refreshTokenCookie.setSecure(true);
+        refreshTokenCookie.setSecure(false);
         refreshTokenCookie.setPath("/");
+        refreshTokenCookie.setAttribute("SameSite", "None");
         refreshTokenCookie.setMaxAge(0); // 쿠키 만료
         response.addCookie(refreshTokenCookie);
     }
