[BE] chore(#53): Cors setting

rndudals · rndudals · commit 27788c107353 · 2024-01-21T11:47:09.000+09:00
* ProjectConfig : prod, !prod로 구분, dev 환경에서는 모든 url 허용
* SecurityConfig : swagger url추가
diff --git a/backend/src/main/java/com/example/backend/auth/config/ProjectConfig.java b/backend/src/main/java/com/example/backend/auth/config/ProjectConfig.java
@@ -2,6 +2,7 @@
 
 import com.fasterxml.jackson.databind.ObjectMapper;
 import com.fasterxml.jackson.databind.PropertyNamingStrategies;
+import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
@@ -12,6 +13,9 @@
 @Configuration
 public class ProjectConfig implements WebMvcConfigurer {
 
+    @Value("${spring.profiles.active}")
+    private String activeProfile;
+
     // 암호 인코더 정의 - bcrypt 해싱 알고리즘 사용
     @Bean
     public BCryptPasswordEncoder passwordEncoder() {
@@ -26,14 +30,24 @@ public ObjectMapper objectMapper() {
                 // 객체의 속성 이름을 snake-case로 설정
                 .setPropertyNamingStrategy(PropertyNamingStrategies.SNAKE_CASE);
     }
-
-    // Cors 모두 오픈 (개발환경)
     @Override
     public void addCorsMappings(CorsRegistry registry) {
+        if (activeProfile.equals("prod")) {
+            prodProfileCorsMapping(registry);
+        } else {
+            devProfileCorsMapping(registry);
+        }
+    }
+    // Cors 모두 오픈 (개발환경)
+    public void devProfileCorsMapping(CorsRegistry registry) {
         registry.addMapping("/**")
                 .allowedOriginPatterns("*")
                 .allowedMethods("GET", "POST")
                 .allowedHeaders("*")
                 .allowCredentials(true);
     }
+    // 프로덕션 환경에서는 Cors 설정을 Front 페이지와 허용할 서버만 등록
+    private void prodProfileCorsMapping(CorsRegistry registry) {
+
+    }
 }
diff --git a/backend/src/main/java/com/example/backend/auth/config/security/SecurityConfig.java b/backend/src/main/java/com/example/backend/auth/config/security/SecurityConfig.java
@@ -25,6 +25,8 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                                 authorizeHttpRequest
                                         // UnAuth Area
                                         .requestMatchers("/auth/**").permitAll()
+                                        // Swagger 추가
+                                        .requestMatchers("/v3/api-docs/**", "/swagger-ui/**").permitAll()
                                         // Others
                                         .anyRequest().hasAnyAuthority("USER", "ADMIN")
                 )

Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,8 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti`
`25`	`25`	`authorizeHttpRequest`
`26`	`26`	`// UnAuth Area`
`27`	`27`	`.requestMatchers("/auth/**").permitAll()`
	`28`	`+ // Swagger 추가`
	`29`	`+ .requestMatchers("/v3/api-docs/", "/swagger-ui/").permitAll()`
`28`	`30`	`// Others`
`29`	`31`	`.anyRequest().hasAnyAuthority("USER", "ADMIN")`
`30`	`32`	`)`