From 639daacc887c33d93d5ad32367ea58df9ca5d3d5 Mon Sep 17 00:00:00 2001
From: Xvezda <xvezda@naver.com>
Date: Sat, 27 Apr 2024 23:18:57 +0900
Subject: [PATCH] =?UTF-8?q?chore:=20=EB=A1=9C=EA=B7=B8=EC=95=84=EC=9B=83?=
 =?UTF-8?q?=EC=8B=9C=20=EC=9D=B4=EC=A0=84=20=ED=86=A0=ED=81=B0=20=EB=AC=B4?=
 =?UTF-8?q?=ED=9A=A8=ED=99=94?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/api/src/services/auth/v1/route.ts | 33 ++++++++++++++++++++++----
 1 file changed, 28 insertions(+), 5 deletions(-)

diff --git a/apps/api/src/services/auth/v1/route.ts b/apps/api/src/services/auth/v1/route.ts
index 9effee1..00026d1 100644
--- a/apps/api/src/services/auth/v1/route.ts
+++ b/apps/api/src/services/auth/v1/route.ts
@@ -283,9 +283,25 @@ app.get('/logout', withPrevUrl, async (c) => {
 	const result = await response.json() as DeleteTokenRespone;
 	*/
 
-	deleteSessionCookies(c);
-
-	return c.redirect(c.var.prevUrl);
+	try {
+		// access token 갱신 요청으로 이전 토큰을 무효화
+		const sessionSid = getCookie(c, 'session_sid')!;
+		const securedToken = await decryptToken(c, sessionSid);
+		const securedPayload = await verifyToken<SecuredSessionPayload>(c, securedToken);
+		const { refreshToken } = securedPayload['http:cheda.kr/user'];
+
+		const url = new URL('https://nid.naver.com/oauth2.0/token');
+		url.searchParams.append('grant_type', 'refresh_token');
+		url.searchParams.append('client_id', c.env.OAUTH_CLIENT_ID_NAVER);
+		url.searchParams.append('client_secret', c.env.OAUTH_CLIENT_SECRET_NAVER);
+		url.searchParams.append('refresh_token', refreshToken);
+
+		const response = await fetch(url);
+		await response.json() as RefreshTokenResponse;
+	} finally {
+		deleteSessionCookies(c);
+		return c.redirect(c.var.prevUrl);
+	}
 });
 
 app.get('/login', withPrevUrl, async (c) => {
@@ -453,13 +469,20 @@ app.get('/callback', async (c) => {
 app.get('/me', withSession, async (c) => {
 	const { user } = c.var.session;
 
-	const response = fetch('https://openapi.naver.com/v1/nid/me', {
+	const response = await fetch('https://openapi.naver.com/v1/nid/me', {
 		headers: {
 			'Authorization': `Bearer ${user.accessToken}`,
 		},
 	});
 
-	const result = await response.then(r => r.json()) as NidMeResponse;
+	if (!response.ok) {
+		if (response.status === 401) {
+			throw new HTTPException(401, { message: 'Unauthorized' });
+		}
+		throw new HTTPException(500, { message: 'Internal Server Error' });
+	}
+
+	const result = await response.json() as NidMeResponse;
 
 	return c.json({
 		name: result.response.nickname,