fix: 세션 아이디 파라미터로 검사하는 로직 제거 (#143)

sunnybraille · Mar 13, 2024 · 287851e · 287851e
1 parent cb6d6ce
commit 287851e
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 5 deletions.
diff --git a/server/src/main/java/sunflower/server/api/MemberApiController.java b/server/src/main/java/sunflower/server/api/MemberApiController.java
@@ -37,7 +37,7 @@ public ResponseEntity<Void> login(@RequestBody LoginRequest request, HttpServlet
         final String sessionId = sessionService.createSessionId(id);
 
         response.setHeader("Set-Cookie", "sessionId=" + sessionId + "; HttpOnly; Max-Age=3600; Path=/; Secure; SameSite=None"); // 사용중이지 않음
-        response.setHeader("SessionId", sessionId); // 임시 사용중
+//        response.setHeader("SessionId", sessionId); // 임시 사용중
 
         return ResponseEntity
                 .status(HttpStatus.OK.value())

diff --git a/server/src/main/java/sunflower/server/application/resolver/MemberAuthArgumentResolver.java b/server/src/main/java/sunflower/server/application/resolver/MemberAuthArgumentResolver.java
@@ -47,10 +47,10 @@ public Object resolveArgument(final MethodParameter parameter, final ModelAndVie
     }
 
     private String findEncryptedSessionId(final HttpServletRequest request) {
-        final String sessionId = request.getHeader("SessionId");
-        if (sessionId != null) {
-            return sessionId;
-        }
+//        final String sessionId = request.getHeader("SessionId");
+//        if (sessionId != null) {
+//            return sessionId;
+//        }
 
         return extractSessionId(request.getCookies());
     }