[MERGE] Merge pull request #312 from Team-WSS/fix/#311

ChaeAg · web-flow · commit 602647185df2 · 2025-02-26T00:21:52.000+09:00
[FIX] 유저 탈퇴 시 해당 유저의 모든 리프레시 토큰 제거 로직 추가
diff --git a/src/main/java/org/websoso/WSSServer/domain/RefreshToken.java b/src/main/java/org/websoso/WSSServer/domain/RefreshToken.java
@@ -4,6 +4,7 @@
 import lombok.Getter;
 import org.springframework.data.annotation.Id;
 import org.springframework.data.redis.core.RedisHash;
+import org.springframework.data.redis.core.index.Indexed;
 
 @Getter
 @AllArgsConstructor
@@ -13,5 +14,6 @@ public class RefreshToken {
     @Id
     private String refreshToken;
 
+    @Indexed
     private Long userId;
 }
diff --git a/src/main/java/org/websoso/WSSServer/dto/user/WithdrawalRequest.java b/src/main/java/org/websoso/WSSServer/dto/user/WithdrawalRequest.java
@@ -1,12 +1,9 @@
 package org.websoso.WSSServer.dto.user;
 
-import jakarta.validation.constraints.NotBlank;
 import jakarta.validation.constraints.Size;
 
 public record WithdrawalRequest(
         @Size(max = 80, message = "탈퇴 사유는 80자를 초과할 수 없습니다.")
-        String reason,
-        @NotBlank(message = "리프레시 토큰은 null 이거나, 공백일 수 없습니다.")
-        String refreshToken
+        String reason
 ) {
 }
diff --git a/src/main/java/org/websoso/WSSServer/repository/RefreshTokenRepository.java b/src/main/java/org/websoso/WSSServer/repository/RefreshTokenRepository.java
@@ -1,10 +1,13 @@
 package org.websoso.WSSServer.repository;
 
+import java.util.List;
 import java.util.Optional;
 import org.springframework.data.repository.CrudRepository;
 import org.websoso.WSSServer.domain.RefreshToken;
 
 public interface RefreshTokenRepository extends CrudRepository<RefreshToken, String> {
 
     Optional<RefreshToken> findByRefreshToken(String refreshToken);
+
+    List<RefreshToken> findAllByUserId(Long userId);
 }
diff --git a/src/main/java/org/websoso/WSSServer/service/UserService.java b/src/main/java/org/websoso/WSSServer/service/UserService.java
@@ -196,7 +196,7 @@ public void withdrawUser(User user, WithdrawalRequest withdrawalRequest) {
         String messageContent = MessageFormatter.formatUserWithdrawMessage(user.getUserId(), user.getNickname(),
                 withdrawalRequest.reason());
 
-        cleanupUserData(user.getUserId(), withdrawalRequest.refreshToken());
+        cleanupUserData(user.getUserId());
 
         messageService.sendDiscordWebhookMessage(
                 DiscordWebhookMessage.of(messageContent, WITHDRAW));
@@ -239,9 +239,8 @@ private void unlinkSocialAccount(User user) {
         }
     }
 
-    private void cleanupUserData(Long userId, String refreshToken) {
-        refreshTokenRepository.findByRefreshToken(refreshToken)
-                .ifPresent(refreshTokenRepository::delete);
+    private void cleanupUserData(Long userId) {
+        refreshTokenRepository.deleteAll(refreshTokenRepository.findAllByUserId(userId));
         feedRepository.updateUserToUnknown(userId);
         commentRepository.updateUserToUnknown(userId);
         userRepository.deleteById(userId);
