refactor: session id로 검사하는 로직 제거

gitchannn · gitchannn · commit 980b4474461c · 2024-03-14T10:48:15.000+09:00
diff --git a/server/src/main/java/sunflower/server/api/MemberApiController.java b/server/src/main/java/sunflower/server/api/MemberApiController.java
@@ -36,8 +36,7 @@ public ResponseEntity<Void> login(@RequestBody LoginRequest request, HttpServlet
         final Long id = memberService.login(request.getLoginId(), request.getPassword());
         final String sessionId = sessionService.createSessionId(id);
 
-        response.setHeader("Set-Cookie", "sessionId=" + sessionId + "; HttpOnly; Max-Age=3600; Path=/; Secure; SameSite=None"); // 사용중이지 않음
-//        response.setHeader("SessionId", sessionId); // 임시 사용중
+        response.setHeader("Set-Cookie", "sessionId=" + sessionId + "; HttpOnly; Max-Age=3600; Path=/; Secure; SameSite=None");
 
         return ResponseEntity
                 .status(HttpStatus.OK.value())
diff --git a/server/src/main/java/sunflower/server/application/resolver/MemberAuthArgumentResolver.java b/server/src/main/java/sunflower/server/application/resolver/MemberAuthArgumentResolver.java
@@ -30,7 +30,7 @@ public boolean supportsParameter(final MethodParameter parameter) {
     @Override
     public Object resolveArgument(final MethodParameter parameter, final ModelAndViewContainer mavContainer, final NativeWebRequest webRequest, final WebDataBinderFactory binderFactory) throws Exception {
         HttpServletRequest request = (HttpServletRequest) webRequest.getNativeRequest();
-        String encryptedSessionId = findEncryptedSessionId(request);
+        String encryptedSessionId = extractSessionId(request.getCookies());
 
         if (encryptedSessionId == null) {
             throw new AuthException();
@@ -46,15 +46,6 @@ public Object resolveArgument(final MethodParameter parameter, final ModelAndVie
         }
     }
 
-    private String findEncryptedSessionId(final HttpServletRequest request) {
-//        final String sessionId = request.getHeader("SessionId");
-//        if (sessionId != null) {
-//            return sessionId;
-//        }
-
-        return extractSessionId(request.getCookies());
-    }
-
     private String extractSessionId(final Cookie[] cookies) {
         if (cookies == null) {
             throw new AuthException();
