From afe672228aa3395703f6a40d10b3169086fba6d1 Mon Sep 17 00:00:00 2001
From: static <kmc7468@naver.com>
Date: Thu, 2 Jan 2025 09:09:13 +0900
Subject: [PATCH] =?UTF-8?q?Token=20Upgrade/Refresh=20=ED=9B=84,=20?=
 =?UTF-8?q?=EC=BF=A0=ED=82=A4=EC=9D=98=20=EC=9C=A0=ED=9A=A8=20=EA=B8=B0?=
 =?UTF-8?q?=EA=B0=84=EC=9D=84=20=EC=84=A4=EC=A0=95=ED=95=98=EC=A7=80=20?=
 =?UTF-8?q?=EC=95=8A=EB=8D=98=20=EB=B2=84=EA=B7=B8=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/routes/api/auth/refreshToken/+server.ts        | 4 ++++
 src/routes/api/auth/upgradeToken/verify/+server.ts | 4 ++++
 2 files changed, 8 insertions(+)

diff --git a/src/routes/api/auth/refreshToken/+server.ts b/src/routes/api/auth/refreshToken/+server.ts
index 7960348..5a01c85 100644
--- a/src/routes/api/auth/refreshToken/+server.ts
+++ b/src/routes/api/auth/refreshToken/+server.ts
@@ -1,4 +1,6 @@
 import { error, text } from "@sveltejs/kit";
+import ms from "ms";
+import env from "$lib/server/loadenv";
 import { refreshToken as doRefreshToken } from "$lib/server/services/auth";
 import type { RequestHandler } from "./$types";
 
@@ -9,10 +11,12 @@ export const POST: RequestHandler = async ({ cookies }) => {
   const { accessToken, refreshToken } = await doRefreshToken(token);
   cookies.set("accessToken", accessToken, {
     path: "/",
+    maxAge: ms(env.jwt.accessExp) / 1000,
     sameSite: "strict",
   });
   cookies.set("refreshToken", refreshToken, {
     path: "/api/auth",
+    maxAge: ms(env.jwt.refreshExp) / 1000,
     sameSite: "strict",
   });
 
diff --git a/src/routes/api/auth/upgradeToken/verify/+server.ts b/src/routes/api/auth/upgradeToken/verify/+server.ts
index 84f8e82..8abc130 100644
--- a/src/routes/api/auth/upgradeToken/verify/+server.ts
+++ b/src/routes/api/auth/upgradeToken/verify/+server.ts
@@ -1,4 +1,6 @@
 import { error, text } from "@sveltejs/kit";
+import ms from "ms";
+import env from "$lib/server/loadenv";
 import { tokenUpgradeVerifyRequest } from "$lib/server/schemas/auth";
 import { upgradeToken } from "$lib/server/services/auth";
 import type { RequestHandler } from "./$types";
@@ -19,10 +21,12 @@ export const POST: RequestHandler = async ({ request, cookies, getClientAddress
   );
   cookies.set("accessToken", accessToken, {
     path: "/",
+    maxAge: ms(env.jwt.accessExp) / 1000,
     sameSite: "strict",
   });
   cookies.set("refreshToken", refreshToken, {
     path: "/api/auth",
+    maxAge: ms(env.jwt.refreshExp) / 1000,
     sameSite: "strict",
   });