🦷 :: secret key 수정

ilyoil2 · ilyoil2 · commit 075085b40076 · 2024-05-08T09:06:46.000+09:00
diff --git a/src/main/kotlin/scul/projectscul/global/security/jwt/JwtProperties.kt b/src/main/kotlin/scul/projectscul/global/security/jwt/JwtProperties.kt
@@ -1,7 +1,12 @@
 package scul.projectscul.global.security.jwt
 
+import io.jsonwebtoken.SignatureAlgorithm
+import io.jsonwebtoken.security.Keys
 import org.springframework.beans.factory.annotation.Value
 import org.springframework.stereotype.Component
+import java.security.Key
+import java.util.*
+import javax.crypto.SecretKey
 
 @Component
 data class JwtProperties(
@@ -10,4 +15,9 @@ data class JwtProperties(
         @Value("\${jwt.secret-key}") val secretKey: String,
         @Value("\${jwt.access-exp}") val accessExp: Long,
         @Value("\${jwt.refresh-exp}") val refreshExp: Long
-)
+){
+    val secretKey2: SecretKey = Keys.hmacShaKeyFor(
+            Base64.getEncoder().encodeToString(secretKey.toByteArray())
+                    .toByteArray(Charsets.UTF_8)
+    )
+}
diff --git a/src/main/kotlin/scul/projectscul/global/security/jwt/JwtTokenProvider.kt b/src/main/kotlin/scul/projectscul/global/security/jwt/JwtTokenProvider.kt
@@ -23,9 +23,7 @@ class JwtTokenProvider(
         private val authDetailsService: AuthDetailsService,
         private val refreshTokenRepository: RefreshTokenRepository
 ) {
-
-    val key: Key = Keys.secretKeyFor(SignatureAlgorithm.HS256)
-
+    
     companion object {
         private const val ACCESS = "access_token"
         private const val REFRESH = "refresh_token"
@@ -45,7 +43,7 @@ class JwtTokenProvider(
         return Jwts.builder()
             .setSubject(accountId)
             .claim("typ", typ)
-            .signWith(key, SignatureAlgorithm.HS256)
+            .signWith(jwtProperties.secretKey2, SignatureAlgorithm.HS256)
             .setExpiration(Date(System.currentTimeMillis() + exp * 1000))
             .setIssuedAt(Date())
             .compact()
@@ -57,7 +55,7 @@ class JwtTokenProvider(
             .setHeaderParam("type", type)
             .setIssuedAt(Date())
             .setExpiration(Date(System.currentTimeMillis() + ttl * 1000))
-                .signWith(key, SignatureAlgorithm.HS256)
+                .signWith(jwtProperties.secretKey2, SignatureAlgorithm.HS256)
                 .compact()
     }
 
@@ -74,7 +72,7 @@ class JwtTokenProvider(
     private fun getClaims(token: String): Claims {
         return try {
             Jwts.parser()
-                .setSigningKey(key)
+                .setSigningKey(jwtProperties.secretKey2)
                 .parseClaimsJws(token)
                 .body
         } catch (e: ExpiredJwtException) {
