IT-Cotato · Youthhing · Jun 24, 2024 · Jun 24, 2024 · Jun 24, 2024
diff --git a/src/main/java/org/cotato/csquiz/common/config/SecurityConfig.java b/src/main/java/org/cotato/csquiz/common/config/SecurityConfig.java
@@ -28,6 +28,8 @@ public class SecurityConfig {
             "/swagger-ui/**",
             "/v3/api-docs/**",
             "/swagger-ui.html",
+            "/v1/api/generation",
+            "/v1/api/session",
             "/websocket/csquiz"
     };
 
@@ -49,7 +51,6 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         AuthenticationManager authenticationManager = sharedObject.build();
         http.authenticationManager(authenticationManager);
         http.cors();
-
         http.csrf().disable()
                 .cors().disable()
                 .formLogin().disable()
@@ -67,7 +68,6 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                         .hasAnyRole("MEMBER", "EDUCATION", "ADMIN")
                         .requestMatchers(new AntPathRequestMatcher("/v1/api/education", "GET")).authenticated()
                         .requestMatchers("/v1/api/education/**").hasAnyRole("EDUCATION", "ADMIN")
-                        .requestMatchers("/v1/api/generation").authenticated()
                         .requestMatchers("/v1/api/generation/**").hasAnyRole("ADMIN")
                         .requestMatchers("/v1/api/mypage/**").hasAnyRole("MEMBER", "OLD_MEMBER", "EDUCATION", "ADMIN")
                         .requestMatchers("/v1/api/quiz/cs-admin/**").hasAnyRole("EDUCATION", "ADMIN")

diff --git a/src/main/java/org/cotato/csquiz/common/config/filter/JwtAuthorizationFilter.java b/src/main/java/org/cotato/csquiz/common/config/filter/JwtAuthorizationFilter.java
@@ -28,7 +28,10 @@ public class JwtAuthorizationFilter extends OncePerRequestFilter {
     private static final String LOGIN_PATH = "/login";
     private static final String SWAGGER_PATH = "/swagger-ui";
     private static final String SWAGGER_PATH_3 = "/v3/api-docs";
+    private static final String SWAGGER_FAVICON = "/favicon.ico";
     private static final String WS = "/websocket/csquiz";
+    private static final String GENERATION_PATH = "/v1/api/generation";
+    private static final String SESSION_PATH = "/v1/api/session";
 
     private final JwtTokenProvider jwtTokenProvider;
     private final MemberRepository memberRepository;
@@ -63,7 +66,9 @@ protected boolean shouldNotFilter(HttpServletRequest request) {
         String path = request.getRequestURI();
         log.info("요청 경로: {}", path);
         log.info("요청 메서드: {}", request.getMethod());
-        return path.startsWith(AUTH_PATH) || path.startsWith(LOGIN_PATH)
-                || path.startsWith(SWAGGER_PATH) || path.startsWith(SWAGGER_PATH_3) || path.startsWith(WS);
+        return path.startsWith(AUTH_PATH) || path.equals(LOGIN_PATH)
+                || path.startsWith(SWAGGER_PATH) || path.equals(SWAGGER_FAVICON)
+                || path.startsWith(SWAGGER_PATH_3) || path.startsWith(WS)
+                || path.equals(GENERATION_PATH) || path.equals(SESSION_PATH);
     }
 }