백엔드에서 JWT가 아닌 세션 ID 기반으로 인증하도록 변경

2025-12-14 22:08:45 +00:00 · 2025-01-12 07:28:38 +09:00
parent 0bdf990dae
commit 1a86c8d9e0
42 changed files with 487 additions and 624 deletions
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@@ -8,11 +8,10 @@ services:
    environment:
      # ArkVault
      - DATABASE_URL=/app/data/database.sqlite
-      - JWT_SECRET=${JWT_SECRET:?} # Required
-      - JWT_ACCESS_TOKEN_EXPIRES
-      - JWT_REFRESH_TOKEN_EXPIRES
+      - SESSION_SECRET=${SESSION_SECRET:?} # Required
+      - SESSION_EXPIRES
      - USER_CLIENT_CHALLENGE_EXPIRES
-      - TOKEN_UPGRADE_CHALLENGE_EXPIRES
+      - SESSION_UPGRADE_CHALLENGE_EXPIRES
      - LIBRARY_PATH=/app/data/library
      # SvelteKit
      - ADDRESS_HEADER=${TRUST_PROXY:+X-Forwarded-For}