[Fix]: 순서 바꿈

Jiwoo-Seo · Jiwoo-Seo · commit a23b7814cd0c · 2025-10-01T11:48:06.000+09:00
diff --git a/Dockerfile b/Dockerfile
@@ -9,13 +9,15 @@ ARG PG_TOSS_SECRET_KEY
 ENV PG_TOSS_CLIENT_KEY=${PG_TOSS_CLIENT_KEY}
 ENV PG_TOSS_SECRET_KEY=${PG_TOSS_SECRET_KEY}
 
-# Add non-root user
-RUN addgroup -S spring && adduser -S spring -G spring
-USER spring:spring
-
-# Copy pre-built jar from local build
+# Copy pre-built jar BEFORE switching user
 COPY build/libs/backend-0.0.1-SNAPSHOT.jar app.jar
 
+# Add non-root user and change ownership
+RUN addgroup -S spring && adduser -S spring -G spring && \
+    chown spring:spring /app/app.jar
+
+USER spring:spring
+
 # Expose port
 EXPOSE 8080
 
diff --git a/src/main/java/com/backend/global/security/SecurityConfig.java b/src/main/java/com/backend/global/security/SecurityConfig.java
@@ -35,8 +35,7 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                         // 토스 리다이렉트용 정적 페이지..
                         .requestMatchers("/billing.html", "/payments/**", "/toss/**").permitAll()
 
-                        // 공개 API (기존)..
-
+                        // 공개 API - 루트, 파비콘, h2-console, actuator health
                         .requestMatchers("/", "/favicon.ico", "/h2-console/**", "/actuator/health").permitAll()
                         .requestMatchers("/api/v1/auth/**", "/swagger-ui/**", "/v3/api-docs/**",
                                 "/swagger-ui.html", "/webjars/**", "/notifications/**", "/ws/**",
