Skip to content

Commit

Permalink
hotfix : 토큰 서명 에러 예외 처리 추가
Browse files Browse the repository at this point in the history
  • Loading branch information
@oosedus
oosedus committed Nov 25, 2024
1 parent 0657c22 commit 7599152
Showing 1 changed file with 10 additions and 0 deletions.
10 changes: 10 additions & 0 deletions src/main/java/corecord/dev/domain/auth/jwt/JwtUtil.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@
import io.jsonwebtoken.MalformedJwtException;
import io.jsonwebtoken.io.Decoders;
import io.jsonwebtoken.security.Keys;
import io.jsonwebtoken.security.SignatureException;
import lombok.extern.slf4j.Slf4j;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.security.oauth2.jwt.JwtException;
Expand Down Expand Up @@ -92,6 +93,9 @@ private boolean isTokenValid(String token, String claimKey, TokenErrorStatus err

return true;

} catch (SignatureException e) {
log.error("토큰 서명 검증 실패 - Token: {}, Error: {}", token, e.getMessage());
throw new TokenException(errorStatus);
} catch (ExpiredJwtException e) {
log.warn("토큰이 만료되었습니다: {}", e.getMessage());
throw new TokenException(errorStatus);
Expand Down Expand Up @@ -130,6 +134,12 @@ private String getClaimFromToken(String token, String claimKey, TokenErrorStatus
.parseSignedClaims(token)
.getPayload()
.get(claimKey, String.class);
} catch (SignatureException e) {
log.error("토큰 서명 검증 실패 - Token: {}, Error: {}", token, e.getMessage());
throw new TokenException(errorStatus);
} catch (ExpiredJwtException e) {
log.warn("토큰이 만료되었습니다.");
throw new TokenException(errorStatus);
} catch (JwtException | IllegalArgumentException e) {
log.warn("유효하지 않은 토큰입니다.");
throw new TokenException(errorStatus);
Expand Down

0 comments on commit 7599152

Please sign in to comment.