게시판 권한 설정

2025-02-07 14:05:46 +09:00 · 2025-02-07 14:05:46 +09:00 · 1a3c1333e3
commit 1a3c1333e3
parent 7cadf7722d
1 changed files with 3 additions and 5 deletions
--- a/src/main/java/io/company/localhost/common/security/config/SecurityConfig.java
+++ b/src/main/java/io/company/localhost/common/security/config/SecurityConfig.java
@ -25,10 +25,8 @@ import io.company.localhost.common.security.service.TokenService;
 import io.company.localhost.common.security.service.MemberPrincipalDetailService;
 import io.company.localhost.common.security.session.AuthenticationSessionControlStrategy;
 import io.company.localhost.common.security.session.CustomSessionRegistryImpl;
-import io.company.localhost.service.NetmemberService;
 import lombok.RequiredArgsConstructor;

-import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.authentication.AuthenticationManager;
@ -56,7 +54,6 @@ public class SecurityConfig {
 	private final MemberPrincipalDetailService userDetailsService;
 	private final MemberAuthSuccessHandler successHandler;
 	private final MemberAuthFailureHandler failureHandler;
-	private final NetmemberService netmemberService;
 	private final AuthorizationManager<RequestAuthorizationContext> authorizationManager;

 	// 세션 관련 상수 설정
@ -82,8 +79,9 @@ public class SecurityConfig {

 		http
 			.securityMatcher("/api/**")  // '/api/**' 경로에 대해서만 보안 적용
-			.authorizeHttpRequests(auth ->
-				auth.requestMatchers("/api/**").permitAll() // 특정 엔드포인트 허용
+			.authorizeHttpRequests(auth -> auth
+				.requestMatchers("/api/board/**").hasRole("MEMBER")
+				.requestMatchers("/api/**").permitAll() // 특정 엔드포인트 허용
 				.anyRequest().authenticated() // 나머지 요청은 인증 필요
 				//auth.anyRequest().access(authorizationManager) // 모든 요청에 대해 권한 관리
 			)