feat: 리소스 접근 제어 수정

ysw789 · ysw789 · commit 291a97d1b5fb · 2025-02-09T21:14:45.000+09:00
- 인증이 필요하지 않은 접근은 모두 허용해 불필요한 권한 검사를 피함
diff --git a/src/main/java/dmu/dasom/api/global/auth/config/SecurityConfig.java b/src/main/java/dmu/dasom/api/global/auth/config/SecurityConfig.java
@@ -50,8 +50,7 @@ public SecurityFilterChain filterChain(final HttpSecurity http, final Authentica
                 .authorizeHttpRequests(auth -> auth
                         .requestMatchers("/api/admin/**").hasRole(Role.ROLE_ADMIN.getName())
                         .requestMatchers("/api/auth/logout").authenticated()
-                        .requestMatchers("/api/**", "/swagger-ui/**", "/v3/api-docs/**").permitAll()
-                        .anyRequest().authenticated())
+                        .anyRequest().permitAll())
                 .addFilterBefore(jwtFilter, CustomAuthenticationFilter.class)
                 .addFilterAt(customAuthenticationFilter, UsernamePasswordAuthenticationFilter.class)
                 .addFilterAfter(new CustomLogoutFilter(jwtUtil), JwtFilter.class)
