1.로그인필터 작성
Slf4j
public class LoginFilter extends UsernamePasswordAuthenticationFilter {
private AuthenticationManager authenticationManager;
private String jwtSecret="jwtSecret";
private long jwtExpirationInMs=1;
private long refreshExpirationInMs=30;
public LoginFilter(AuthenticationManager authenticationManager){
this.authenticationManager=authenticationManager;
}
@Override
public Authentication attemptAuthentication(HttpServletRequest request, HttpServletResponse response)throws AuthenticationException {
log.info("로그인 필터 입장");
ObjectMapper objectMapper=new ObjectMapper();
JSONObject jsonObject=new JSONObject();
try {
jsonObject = objectMapper.readValue(request.getInputStream(), JSONObject.class);
log.info("로그인시도 정보:{}",jsonObject);
return authenticationManager.authenticate(new UsernamePasswordAuthenticationToken(jsonObject.get("id"),jsonObject.get("pwd")));
} catch (IOException e) {
log.error("요청에서 JSON 데이터를 읽는 중 오류 발생", e);
throw new AuthenticationServiceException("요청에서 JSON 데이터를 읽는 중 오류 발생", e);
}
}
@Override
protected void successfulAuthentication(HttpServletRequest request, HttpServletResponse response, FilterChain chain, Authentication authResult) throws IOException, ServletException {
log.info("로그인 성공");
// 로그인 성공 시 JWT 토큰 발급
String jwtToken = generateToken("access", jwtExpirationInMs);
String refreshToken = generateToken("refresh", refreshExpirationInMs);
// JWT 토큰을 응답 쿠키에 추가
ResponseCookie jwtCookie = ResponseCookie.from("access_token", jwtToken)
.path("/")
.httpOnly(true)
.maxAge(jwtExpirationInMs / 1000)
.sameSite("None")
.secure(true)
.build();
response.addHeader("Set-Cookie", jwtCookie.toString());
ResponseCookie refreshCookie = ResponseCookie.from("refresh_token", refreshToken)
.path("/")
.httpOnly(true)
.maxAge(refreshExpirationInMs / 1000)
.sameSite("None")
.secure(true)
.build();
response.addHeader("Set-Cookie", refreshCookie.toString());
// 로그인 성공 시 200 응답 코드만 반환
response.setStatus(HttpServletResponse.SC_OK);
// 응답 본문에 JSON 추가
ObjectMapper objectMapper = new ObjectMapper();
String jsonResponse = objectMapper.writeValueAsString(Map.of("message", "login done"));
response.getWriter().write(jsonResponse);
response.getWriter().flush();
}
@Override
protected void unsuccessfulAuthentication(HttpServletRequest request, HttpServletResponse response, AuthenticationException failed) throws IOException, ServletException {
log.info("로그인실패:{}",failed.getMessage());
// 로그인 실패 응답 설정
response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); // 예시로 401 Unauthorized 상태 코드를 설정
// 실패 메시지를 JSON 형식으로 응답에 추가
Map<String, String> errorResponse = new HashMap<>();
errorResponse.put("error", "Authentication failed");
errorResponse.put("message", failed.getMessage());
response.setContentType("application/json");
response.getWriter().write(new ObjectMapper().writeValueAsString(errorResponse));
response.getWriter().flush();
}
private String generateToken(String username, long expiration) {
try {
Algorithm algorithm = Algorithm.HMAC512(jwtSecret);
Date expiryDate = new Date(System.currentTimeMillis() + expiration);
return JWT.create()
.withSubject(username)
.withIssuedAt(new Date())
.withExpiresAt(expiryDate)
.sign(algorithm);
} catch (JWTCreationException e) {
throw new RuntimeException("Error creating JWT token", e);
}
}
테스트
소스
https://github.com/novb1492/login/tree/action-login
GitHub - novb1492/login
Contribute to novb1492/login development by creating an account on GitHub.
github.com
버그fix
1.쿠키가 너무빨리 만료되는버그
// JWT 토큰을 응답 쿠키에 추가
ResponseCookie jwtCookie = ResponseCookie.from("access_token", jwtToken)
.path("/")
.httpOnly(true)
.maxAge(jwtExpirationInMs * 60)
.sameSite("none")
.secure(true)
.build();
response.addHeader("Set-Cookie", jwtCookie.toString());
ResponseCookie refreshCookie = ResponseCookie.from("refresh_token", refreshToken)
.path("/")
.httpOnly(true)
.maxAge(refreshExpirationInMs*60)
.sameSite("none")
.secure(true)
.build();
response.addHeader("Set-Cookie", refreshCookie.toString());
// 로그인 성공 시 200 응답 코드만 반환
response.setStatus(HttpServletResponse.SC_OK);2.토큰 값에 잘못들어가는 버그
// 로그인 성공한 유저의 이름 얻어내기
SecurityContextHolder.getContext().setAuthentication(authResult);
PrincipalDetails principalDetails = (PrincipalDetails) authResult.getPrincipal();
String username = principalDetails.getUsername();
// 로그인 성공 시 JWT 토큰 발급
String jwtToken = tokenService.generateToken(username, jwtExpirationInMs);
String refreshToken = tokenService.generateToken(username, refreshExpirationInMs);3.토큰이 너무 빨리 만료되는 버그
public String generateToken(String username, long expiration) {
try {
Algorithm algorithm = Algorithm.HMAC512(jwtSecret);
Date expiryDate = new Date(System.currentTimeMillis() + 1000*expiration*60);
return JWT.create()
.withSubject(username)
.withIssuedAt(new Date())
.withExpiresAt(expiryDate)
.sign(algorithm);
} catch (JWTCreationException e) {
throw new RuntimeException("Error creating JWT token", e);
}
}'짧은 프로젝트' 카테고리의 다른 글
| Springboot jwt 로그인5(엑세스 토큰 재발급) (0) | 2024.01.14 |
|---|---|
| Springboot jwt 로그인3(redis 리프레시토큰) (0) | 2024.01.12 |
| Spring boot jwt 로그인 하기1 (기본세팅) (0) | 2024.01.11 |
| Springboot 배달 시스템 만들기 3(위치정보 전송 및 표시하기 카카오지도) (0) | 2024.01.10 |
| Springboot 배달 시스템 만들기 2(배달방 생성,삭제,메세지전송) (0) | 2024.01.10 |