forked from solid-connection/solid-connect-server
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathRefreshTokenCookieManager.java
More file actions
42 lines (35 loc) · 1.54 KB
/
RefreshTokenCookieManager.java
File metadata and controls
42 lines (35 loc) · 1.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
package com.example.solidconnection.auth.controller;
import com.example.solidconnection.auth.domain.TokenType;
import jakarta.servlet.http.HttpServletResponse;
import org.springframework.http.HttpHeaders;
import org.springframework.http.ResponseCookie;
import org.springframework.stereotype.Component;
@Component
public class RefreshTokenCookieManager {
private static final String COOKIE_NAME = "refreshToken";
private static final String PATH = "/";
private static final String SAME_SITE = "Strict";
public void setCookie(HttpServletResponse response, String refreshToken) {
long maxAge = convertExpireTimeToCookieMaxAge(TokenType.REFRESH.getExpireTime());
setRefreshTokenCookie(response, refreshToken, maxAge);
}
private long convertExpireTimeToCookieMaxAge(long milliSeconds) {
// jwt의 expireTime: millisecond, cookie의 maxAge: second
return milliSeconds / 1000;
}
public void deleteCookie(HttpServletResponse response) {
setRefreshTokenCookie(response, "", 0); // 쿠키 삭제를 위해 maxAge를 0으로 설정
}
private void setRefreshTokenCookie(
HttpServletResponse response, String refreshToken, long maxAge
) {
ResponseCookie cookie = ResponseCookie.from(COOKIE_NAME, refreshToken)
.httpOnly(true)
.secure(true)
.path(PATH)
.maxAge(maxAge)
.sameSite(SAME_SITE)
.build();
response.addHeader(HttpHeaders.SET_COOKIE, cookie.toString());
}
}