From 47ca06720d9ea9197a98de045f21167f05c00904 Mon Sep 17 00:00:00 2001
From: pbc1017 <knsol2@naver.com>
Date: Wed, 20 Mar 2024 19:40:45 +0900
Subject: [PATCH] fix: login security issue

---
 back/routes/user.js                |  4 ++--
 front/src/pages/home/Home/Home.tsx | 12 +++++++++---
 2 files changed, 11 insertions(+), 5 deletions(-)

diff --git a/back/routes/user.js b/back/routes/user.js
index 74bc4b4..9f7dc5e 100644
--- a/back/routes/user.js
+++ b/back/routes/user.js
@@ -75,9 +75,9 @@ router.post("/", async (req, res) => {
 });
 
 router.get("/", async (req, res) => {
-  const { student_id } = req.session.user;
-
   try {
+    const { student_id } = req.session.user;
+
     const member = await Member.findOne({
       where: { student_id },
     });
diff --git a/front/src/pages/home/Home/Home.tsx b/front/src/pages/home/Home/Home.tsx
index 763ff19..3a04f78 100644
--- a/front/src/pages/home/Home/Home.tsx
+++ b/front/src/pages/home/Home/Home.tsx
@@ -26,15 +26,21 @@ export const Home = (): JSX.Element => {
         const loginInfo = JSON.parse(loginInfoStr);
 
         try {
-          console.log(loginInfo);
-          await postRequest("user", loginInfo, () => {});
+          await postRequest(
+            "user",
+            loginInfo,
+            () => {},
+            () => {
+              alert("로그아웃 후 KAIST 계정으로 다시 로그인해주시기 바랍니다.");
+              window.location.href = "https://sso.sparcs.org";
+            }
+          );
           await getRequest("user", (data) => {
             login(data);
           });
           navigate("/");
         } catch (error) {
           console.error(error);
-          logout();
         }
       }
     };