TeamMody · Tnalxmsk · Feb 20, 2025 · Feb 19, 2025 · Feb 19, 2025 · Feb 19, 2025
diff --git a/src/main/java/com/example/mody/domain/auth/handler/OAuth2SuccessHandler.java b/src/main/java/com/example/mody/domain/auth/handler/OAuth2SuccessHandler.java
@@ -4,6 +4,7 @@
 import java.net.URLEncoder;
 import java.nio.charset.StandardCharsets;
 
+import jakarta.servlet.http.Cookie;
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.security.core.Authentication;
 import org.springframework.security.web.authentication.AuthenticationSuccessHandler;
@@ -62,7 +63,19 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
 //		boolean isNewMember = member.getCreatedAt().equals(member.getUpdatedAt());
 
 		// Access Token, Refresh Token 발급
-		String newAccessToken = authCommandService.processLoginSuccess(member, response);
+		String newRefreshToken = authCommandService.processLoginKakaoSuccess(member, response);
+
+		// 쿠키에 저장
+		// Refresh Token을 HTTP-Only, Secure 쿠키로 설정
+		Cookie refreshTokenCookie = new Cookie("refresh_token", newRefreshToken);
+		refreshTokenCookie.setHttpOnly(true);  // JavaScript 접근 차단
+		refreshTokenCookie.setSecure(true);    // HTTPS에서만 전송 (로컬 개발 시 false 가능)
+		refreshTokenCookie.setPath("/");       // 모든 경로에서 사용 가능
+		refreshTokenCookie.setMaxAge(7 * 24 * 60 * 60); // 7일 유효기간 설정
+
+		// SameSite 설정을 위한 헤더 추가
+		response.setHeader("Set-Cookie", "refresh_token=" + newRefreshToken +
+				"; Path=/; HttpOnly; Secure; SameSite=None; Max-Age=" + (7 * 24 * 60 * 60));
 
 		String tempUrl = (!member.isRegistrationCompleted()) ? FRONT_SIGNUP_URL : FRONT_HOME_URL;
 

diff --git a/src/main/java/com/example/mody/domain/auth/service/AuthCommandService.java b/src/main/java/com/example/mody/domain/auth/service/AuthCommandService.java
@@ -14,4 +14,6 @@ public interface AuthCommandService {
 	void logout(String refreshToken);
 
 	String processLoginSuccess(Member member, HttpServletResponse response);
+
+	String processLoginKakaoSuccess(Member member, HttpServletResponse response);
 }
diff --git a/src/main/java/com/example/mody/domain/auth/service/AuthCommandServiceImpl.java b/src/main/java/com/example/mody/domain/auth/service/AuthCommandServiceImpl.java
@@ -108,4 +108,17 @@ public String processLoginSuccess(Member member, HttpServletResponse response) {
 
 		return newAccessToken;
 	}
+
+	// 카카오 전용, 리프레시 토큰 발급
+	@Override
+	public String processLoginKakaoSuccess(Member member, HttpServletResponse response) {
+		// Access Token, Refresh Token 발급
+		String newAccessToken = jwtProvider.createAccessToken(member.getId().toString());
+		String newRefreshToken = jwtProvider.createRefreshToken(member.getId().toString());
+
+		// Refresh Token 저장
+		saveRefreshToken(member, newRefreshToken);
+
+		return newRefreshToken;
+	}
 }
diff --git a/src/main/java/com/example/mody/domain/member/entity/Member.java b/src/main/java/com/example/mody/domain/member/entity/Member.java
@@ -113,8 +113,8 @@ public class Member extends BaseEntity {
 	@Enumerated(EnumType.STRING)
 	private LoginType loginType;
 
-	@Builder.Default
-	private boolean isRegistrationCompleted = false;  // 회원가입 완료 여부
+	@Column(columnDefinition = "boolean default false")
+	private boolean isRegistrationCompleted;  // 회원가입 완료 여부
 
 	public void completeRegistration(String nickname, LocalDate birthDate, Gender gender, Integer height
 		, String profileImageUrl) {