shared-dg04-Won/smarketing-backend
2
0
Fork 0
mirror of https://github.com/won-ktds/smarketing-backend.git synced 2025-12-06 07:06:24 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: Security Config

Browse Source
This commit is contained in:
yuhalog 2025-06-18 13:53:51 +09:00
parent 2e8055df2d
commit 82516174d3
1 changed files with 1 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
smarketing-java/common/src/main/java/com/won/smarketing/common/config/SecurityConfig.java
View File

@ -43,17 +43,7 @@ public class SecurityConfig {
.cors(cors -> cors.configurationSource(corsConfigurationSource()))
.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
.authorizeHttpRequests(auth -> auth
.requestMatchers("/api/auth/**", "/api/member/register", "/api/member/check-duplicate/**",
"/api/member/validate-password", "/swagger-ui/**", "/v3/api-docs/**",
"/swagger-resources/**", "/webjars/**", "/actuator/**", "/health/**", "/error"
).permitAll()
// Rewrite된 경로들 허용 (새로 추가!)
.requestMatchers("/login", "/register", "/auth/**").permitAll() // Member 서비스
.requestMatchers("/stores", "/stores/**").permitAll() // Store 서비스
.requestMatchers("/content", "/content/**").permitAll() // Content 서비스
.requestMatchers("/recommend", "/recommend/**").permitAll() // AI Recommend 서비스
.anyRequest().authenticated()
.anyRequest().permitAll()
)
.addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);