🐛 accessToken → Authorization header로 변경

fitapet-app-external-api/src/main/java/kr/co/fitapet/api/apis/auth/controller/AuthApi.java

@@ -42,8 +42,7 @@
 
 import java.util.Map;
 
-import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.ACCESS_TOKEN;
-import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.REFRESH_TOKEN;
+import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.*;
 
 
 @Tag(name = "유저 관리 API", description = "유저 인증과 관련된 API")
@@ -98,7 +97,7 @@ else if (token.refreshToken() == null)
 
         return ResponseEntity.ok()
                 .header(HttpHeaders.SET_COOKIE, cookie.toString())
-                .header(ACCESS_TOKEN.getValue(), token.accessToken())
+                .header(AUTH_HEADER.getValue(), token.accessToken())
                 .body(SuccessResponse.from(Map.of("member", "등록된 oauth 계정 연동 성공")));
     }
 
@@ -183,7 +182,7 @@ public ResponseEntity<?> refresh(@CookieValue("refreshToken") @Valid String refr
 
         return ResponseEntity.ok()
                 .header(HttpHeaders.SET_COOKIE, cookie.toString())
-                .header(ACCESS_TOKEN.getValue(), tokens.accessToken())
+                .header(AUTH_HEADER.getValue(), tokens.accessToken())
                 .body(SuccessResponse.noContent());
     }
 
@@ -205,7 +204,7 @@ private ResponseEntity<?> getResponseEntity(Long userId, Jwt tokens) {
 
         return ResponseEntity.ok()
                 .header(HttpHeaders.SET_COOKIE, cookie.toString())
-                .header(ACCESS_TOKEN.getValue(), tokens.accessToken())
+                .header(AUTH_HEADER.getValue(), tokens.accessToken())
                 .body(SuccessResponse.from(Map.of("userId", userId)));
     }
 }

fitapet-app-external-api/src/main/java/kr/co/fitapet/api/apis/oauth/controller/OauthApi.java

@@ -29,8 +29,7 @@
 import java.util.Map;
 import java.util.Optional;
 
-import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.ACCESS_TOKEN;
-import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.REFRESH_TOKEN;
+import static kr.co.fitapet.api.common.security.jwt.consts.AuthConstants.*;
 
 @Tag(name = "OAuth API")
 @RestController
@@ -109,7 +108,7 @@ public ResponseEntity<?> signUpSmsAuthorization(
             return ResponseEntity.status(HttpStatus.UNAUTHORIZED).build();
         else if (token.getValue().refreshToken() == null)
             return ResponseEntity.ok()
-                    .header(ACCESS_TOKEN.getValue(), token.getValue().accessToken())
+                    .header(AUTH_HEADER.getValue(), token.getValue().accessToken())
                     .body(SuccessResponse.from(Map.of("member", "신규 회원")));
 
         return getJwtResponseEntity(token.getKey(), token.getValue());
@@ -120,7 +119,7 @@ private ResponseEntity<?> getJwtResponseEntity(Long userId, Jwt jwt) {
 
         return ResponseEntity.ok()
                 .header(HttpHeaders.SET_COOKIE, cookie.toString())
-                .header(ACCESS_TOKEN.getValue(), jwt.accessToken())
+                .header(AUTH_HEADER.getValue(), jwt.accessToken())
                 .body(SuccessResponse.from(Map.of("userId", userId)));
     }
 }

fitapet-app-external-api/src/main/resources/application.yml

@@ -52,12 +52,17 @@ spring:
 server:
   port: 8080
   forward-headers-strategy: framework
+  http2:
+    enabled: true
 
 spring:
   config:
     activate:
       on-profile: prod
 
+  main:
+    allow-bean-definition-overriding: true
+
   mvc:
     throw-exception-if-no-handler-found: true
   web:

fitapet-infra/src/main/resources/application-infra.yml

@@ -108,8 +108,23 @@ oauth2:
         client-name: Apple
 
 ncp:
-  api-key: ${NCP_API_ACCESS_KEY}
-  secret-key: ${NCP_SECRET_KEY}
+  credentials:
+    api-key: ${NCP_API_ACCESS_KEY}
+    secret-key: ${NCP_SECRET_KEY}
   sms:
     service-key: ${NCP_SMS_KEY}
-    sender-phone: ${SENDER_PHONE}
+    sender-phone: ${SENDER_PHONE}
+
+cloud:
+  aws:
+    s3:
+      endpoint: ${NCP_OBJECT_STORAGE_URI}
+      bucket: ${NCP_OBJECT_STORAGE_BUCKET}
+    credentials:
+      access-key: ${NCP_API_ACCESS_KEY}
+      secret-key: ${NCP_SECRET_KEY}
+    region:
+      static: ${NCP_OBJECT_STORAGE_REGION}
+      auto: false
+    stack:
+      auto: false

proxy/conf.d/default.conf

@@ -28,7 +28,7 @@ server {
         ssl_certificate_key     /etc/letsencrypt/live/fitapet.co.kr/privkey.pem;
         include         /etc/letsencrypt/options-ssl-nginx.conf;
         ssl_dhparam     /etc/letsencrypt/ssl-dhparams.pem;
-
+        ssl_protocols TLSv1.2 TLSv1.3;
 
         access_log /var/log/nginx/access.log;