Merge pull request #46 from SoongSilComputingClub/fix/#45-debugging-token-authentication-issues-when-submitt

[Fix/#45] 지원폼 제출시 토큰 인증문제 디버깅

Author: bell-person-ii

src/main/java/com/example/ssccwebbe/global/security/jwt/filter/JwtFilter.java

@@ -21,7 +21,10 @@
 import com.example.ssccwebbe.global.security.jwt.util.JwtUtil;
 import com.fasterxml.jackson.databind.ObjectMapper;
 
+import lombok.extern.slf4j.Slf4j;
+
 // JWT 검증 필터
+@Slf4j
 public class JwtFilter extends OncePerRequestFilter {
 
     // Request 헤더에서 accessToken 을 추출하여 인증, 인가를 처리함
@@ -30,13 +33,26 @@ protected void doFilterInternal(
             HttpServletRequest request, HttpServletResponse response, FilterChain filterChain)
             throws ServletException, IOException {
 
+        log.info(
+                "[JwtFilter] Processing request - Method: {}, URI: {}",
+                request.getMethod(),
+                request.getRequestURI());
+
         String authorization = request.getHeader("Authorization");
         if (authorization == null) {
+            log.warn(
+                    "[JwtFilter] No Authorization header found for URI: {}",
+                    request.getRequestURI());
             filterChain.doFilter(request, response);
             return;
         }
 
+        log.info("[JwtFilter] Authorization header found");
+
         if (!authorization.startsWith("Bearer ")) {
+            log.error(
+                    "[JwtFilter] Invalid token format - Authorization header does not start with"
+                            + " 'Bearer '");
             // ApiResponse 형식으로 응답 작성
             response.setStatus(JwtErrorCode.INVALID_TOKEN_FORMAT.getHttpStatus().value());
             response.setContentType("application/json;charset=UTF-8");
@@ -47,25 +63,39 @@ protected void doFilterInternal(
             return;
         }
 
+        log.info("[JwtFilter] Token format valid (starts with 'Bearer ')");
+
         // 토큰 파싱
         String accessToken = authorization.split(" ")[1];
+        String tokenPreview =
+                accessToken.length() > 20 ? accessToken.substring(0, 20) + "..." : accessToken;
+        log.info("[JwtFilter] Extracted token: {}", tokenPreview);
 
         // 토큰 검증
+        log.info("[JwtFilter] Validating token...");
         if (JwtUtil.isValid(accessToken, true)) {
 
             String username = JwtUtil.getUsername(accessToken);
             String role = JwtUtil.getRole(accessToken);
 
+            log.info("[JwtFilter] Token valid - Username: {}, Role: {}", username, role);
+
             List<GrantedAuthority> authorities =
                     Collections.singletonList(new SimpleGrantedAuthority(role));
 
             Authentication auth =
                     new UsernamePasswordAuthenticationToken(username, null, authorities);
             SecurityContextHolder.getContext().setAuthentication(auth);
 
+            log.info(
+                    "[JwtFilter] Authentication successful for user: {} with role: {}",
+                    username,
+                    role);
+
             filterChain.doFilter(request, response);
 
         } else {
+            log.error("[JwtFilter] Token validation failed - Token is invalid or expired");
             // ApiResponse 형식으로 응답 작성
             response.setStatus(JwtErrorCode.INVALID_TOKEN.getHttpStatus().value());
             response.setContentType("application/json;charset=UTF-8");

src/main/resources/application-local.yaml

@@ -39,10 +39,10 @@ refresh-token:
 
 # Frontend Configuration
 frontend:
-  url: http://localhost:5173
+  url: http://localhost:3000
   cookie:
     secure: false
-    same-site: none
+    same-site: lax
     http-only: true
 
 logging: