From 2f73f7812c9fbcd164b2492d25df590fc2bab56a Mon Sep 17 00:00:00 2001 From: sonsumin Date: Fri, 22 Nov 2024 14:43:36 +0900 Subject: [PATCH] =?UTF-8?q?[#2]=F0=9F=90=9BFix:=20=EC=BF=A0=ED=82=A4=20?= =?UTF-8?q?=EC=88=98=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../univ/yesummit/global/oauth/OAuth2SuccessHandler.java | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/src/main/java/univ/yesummit/global/oauth/OAuth2SuccessHandler.java b/src/main/java/univ/yesummit/global/oauth/OAuth2SuccessHandler.java index 796e575..27bef9b 100644 --- a/src/main/java/univ/yesummit/global/oauth/OAuth2SuccessHandler.java +++ b/src/main/java/univ/yesummit/global/oauth/OAuth2SuccessHandler.java @@ -48,14 +48,14 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo int refreshTokenMaxAge = jwtUtils.getRefreshExpiration().intValue() / 1000; Cookie accessTokenCookie = new Cookie("accessToken", accessToken); - accessTokenCookie.setHttpOnly(true); - accessTokenCookie.setSecure(true); + accessTokenCookie.setHttpOnly(true); // js 접근 불가 + accessTokenCookie.setSecure(false); accessTokenCookie.setPath("/"); accessTokenCookie.setMaxAge(accessTokenMaxAge); Cookie refreshTokenCookie = new Cookie("refreshToken", refreshToken); - refreshTokenCookie.setHttpOnly(true); - refreshTokenCookie.setSecure(true); + refreshTokenCookie.setHttpOnly(true); // js 접근 불가 + refreshTokenCookie.setSecure(false); refreshTokenCookie.setPath("/"); refreshTokenCookie.setMaxAge(refreshTokenMaxAge);