Merge pull request #154 from wafflestudio/151-bug-auth-fix

인증 플로우 업데이트

Author: kimnamheeee

src/components/auth/LoginCard.tsx

@@ -20,7 +20,6 @@ interface LoginResponse {
   message: string
   data: {
     accessToken: string
-    refreshToken: string
   } | null
 }
 
@@ -93,7 +92,6 @@ const LoginCard = () => {
 
       if (res.isSuccess && res.data) {
         localStorage.setItem('accessToken', res.data.accessToken)
-        localStorage.setItem('refreshToken', res.data.refreshToken)
         await invalidateCurrentUser()
         navigate({ to: '/', search: { page: 1 } })
       } else {

src/features/auth/verification/main/model.ts

@@ -34,14 +34,12 @@ export function useVerification() {
         .json<{
           data: {
             accessToken: string
-            refreshToken: string
           }
           isSuccess: boolean
         }>()
 
       if (res.isSuccess) {
         localStorage.setItem('accessToken', res.data.accessToken)
-        localStorage.setItem('refreshToken', res.data.refreshToken)
         await invalidateCurrentUser()
         navigate({
           to: '/',

src/shared/api/authApi.ts

@@ -5,25 +5,22 @@ type RefreshResponse = {
   message: string
   data: {
     accessToken: string
-    refreshToken: string
   }
   success: boolean
 }
 
 const authInstance = ky.create({
   prefixUrl: import.meta.env.VITE_API_URL,
   timeout: 10000,
+  credentials: 'include',
   headers: {
     'Content-Type': 'application/json',
   },
   retry: 0,
 })
 
 export async function refreshAccessToken() {
-  const refreshToken = localStorage.getItem('refreshToken')
-  const response = await authInstance.post('api/v1/auth/refresh', {
-    json: { refreshToken },
-  })
+  const response = await authInstance.post('api/v1/auth/refresh')
   const result = await response.json<RefreshResponse>()
   return result.data
 }

src/shared/api/ky.ts

@@ -11,10 +11,7 @@ if (!import.meta.env.VITE_API_URL) {
 const DEV = import.meta.env.DEV
 const requestStartTimes = new WeakMap<NormalizedOptions, number>()
 let isRefreshing = false
-let refreshPromise: Promise<{
-  accessToken: string
-  refreshToken: string
-}> | null = null
+let refreshPromise: Promise<{ accessToken: string }> | null = null
 
 function maskHeaders(headersInit: HeadersInit | undefined) {
   const headers = headersInit ? new Headers(headersInit) : undefined
@@ -48,6 +45,7 @@ function getDurationMs(options: NormalizedOptions) {
 export const instance = ky.create({
   prefixUrl: import.meta.env.VITE_API_URL,
   timeout: 10000,
+  credentials: 'include',
   headers: {
     'Content-Type': 'application/json',
   },
@@ -135,13 +133,11 @@ export const instance = ky.create({
           try {
             const data = await refreshPromise
             localStorage.setItem('accessToken', data.accessToken)
-            localStorage.setItem('refreshToken', data.refreshToken)
             void queryClient.invalidateQueries({
               queryKey: currentUserQueryKey,
             })
           } catch {
             localStorage.removeItem('accessToken')
-            localStorage.removeItem('refreshToken')
             useAuthStore.getState().setSessionExpired()
           } finally {
             isRefreshing = false

src/shared/auth/useAuth.ts

@@ -13,7 +13,6 @@ type LoginResponse = {
   success: boolean
   data: {
     accessToken: string
-    refreshToken: string
   }
 }
 
@@ -32,7 +31,6 @@ export function useAuth() {
 
     if (response.success) {
       localStorage.setItem('accessToken', response.data.accessToken)
-      localStorage.setItem('refreshToken', response.data.refreshToken)
       await invalidateCurrentUser()
       navigate({ to: '/', search: { page: 1 } })
     }
@@ -44,7 +42,6 @@ export function useAuth() {
       await instance.post('api/v1/auth/logout')
     } finally {
       localStorage.removeItem('accessToken')
-      localStorage.removeItem('refreshToken')
       clearCurrentUser()
       reset()
       navigate({ to: '/login' })