From 206776f158905652c3763de44fbfb1e734741253 Mon Sep 17 00:00:00 2001
From: jiseon <mongbu54@gmail.com>
Date: Sat, 21 Sep 2024 16:01:07 +0900
Subject: [PATCH] =?UTF-8?q?fix:=20api=20=EC=A0=91=EA=B7=BC=20=EA=B6=8C?=
 =?UTF-8?q?=ED=95=9C=20=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../java/com/dissonance/itit/config/SecurityConfig.java     | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/main/java/com/dissonance/itit/config/SecurityConfig.java b/src/main/java/com/dissonance/itit/config/SecurityConfig.java
index 7cfe670..f6739d3 100644
--- a/src/main/java/com/dissonance/itit/config/SecurityConfig.java
+++ b/src/main/java/com/dissonance/itit/config/SecurityConfig.java
@@ -44,10 +44,10 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 			)
 			.authorizeHttpRequests(authorizeRequests ->
 				authorizeRequests
-					.requestMatchers("/oauth/**",      // TODO: 토큰 관련 작업 후 security 적용
-						"/swagger-ui/**",
-						"/v3/api-docs/**").permitAll()
+					.requestMatchers("/oauth/**", "/swagger-ui/**", "/v3/api-docs/**").permitAll()
 					.requestMatchers(HttpMethod.POST, "/info-posts").hasRole("ADMIN")
+					.requestMatchers(HttpMethod.PATCH, "/info-posts/{infoPostId}/reports").authenticated()
+					.requestMatchers("/info-posts/**", "/featured-posts/**").permitAll()
 					.anyRequest().authenticated()
 			)
 			.addFilterBefore(jwtAuthFilter, UsernamePasswordAuthenticationFilter.class)