🐛 [Fix] 토큰 없는 경우 400으로 에러 처리 (#116)

Author: Properks

src/main/java/org/withtime/be/withtimebe/domain/auth/service/command/AuthCommandServiceImpl.java

@@ -104,10 +104,18 @@ private Long getUserId(String token) {
     }
 
     private String getAccessToken(HttpServletRequest request) {
-        return CookieUtil.getCookie(request, AuthenticationConstants.ACCESS_TOKEN_NAME);
+        return this.getInCookie(request, AuthenticationConstants.ACCESS_TOKEN_NAME);
     }
 
     private String getRefreshToken(HttpServletRequest request) {
-        return CookieUtil.getCookie(request, AuthenticationConstants.REFRESH_TOKEN_NAME);
+        return this.getInCookie(request, AuthenticationConstants.REFRESH_TOKEN_NAME);
+    }
+
+    private String getInCookie(HttpServletRequest request, String name) {
+        String cookieValue = CookieUtil.getCookie(request, name);
+        if (cookieValue == null) {
+            throw new TokenException(TokenErrorCode.NOT_EXISTS_TOKEN);
+        }
+        return cookieValue;
     }
 }

src/main/java/org/withtime/be/withtimebe/global/error/code/TokenErrorCode.java

@@ -9,7 +9,8 @@
 public enum TokenErrorCode implements BaseErrorCode {
 
     TOKEN_EXPIRED(HttpStatus.UNAUTHORIZED, "TOKEN401_1", "토큰의 기한이 만료되었습니다."),
-    INVALID_REFRESH_TOKEN(HttpStatus.UNAUTHORIZED, "TOKEN401_2", "리프레시 토큰이 유효하지 않습니다.")
+    INVALID_REFRESH_TOKEN(HttpStatus.UNAUTHORIZED, "TOKEN401_2", "리프레시 토큰이 유효하지 않습니다."),
+    NOT_EXISTS_TOKEN(HttpStatus.BAD_REQUEST, "TOKEN400_1", "토큰이 존재하지 않습니다."),
     ;
 
     private final HttpStatus httpStatus;

src/main/java/org/withtime/be/withtimebe/global/security/handler/CustomLogoutHandler.java

@@ -7,6 +7,8 @@
 import org.withtime.be.withtimebe.domain.auth.service.command.TokenStorageCommandService;
 import org.withtime.be.withtimebe.domain.auth.service.query.TokenQueryService;
 import org.withtime.be.withtimebe.domain.auth.service.query.TokenStorageQueryService;
+import org.withtime.be.withtimebe.global.error.code.TokenErrorCode;
+import org.withtime.be.withtimebe.global.error.exception.TokenException;
 import org.withtime.be.withtimebe.global.security.constants.AuthenticationConstants;
 import org.withtime.be.withtimebe.global.util.CookieUtil;
 
@@ -39,9 +41,18 @@ private Long getUserId(String token) {
     }
 
     private String getAccessToken(HttpServletRequest request) {
-        return CookieUtil.getCookie(request, AuthenticationConstants.ACCESS_TOKEN_NAME);
+        return this.getInCookie(request, AuthenticationConstants.ACCESS_TOKEN_NAME);
     }
 
     private String getRefreshToken(HttpServletRequest request) {
-        return CookieUtil.getCookie(request, AuthenticationConstants.REFRESH_TOKEN_NAME);
-    }}
+        return this.getInCookie(request, AuthenticationConstants.REFRESH_TOKEN_NAME);
+    }
+
+    private String getInCookie(HttpServletRequest request, String name) {
+        String cookieValue = CookieUtil.getCookie(request, name);
+        if (cookieValue == null) {
+            throw new TokenException(TokenErrorCode.NOT_EXISTS_TOKEN);
+        }
+        return cookieValue;
+    }
+}