fix: 시큐리티 설정 & OAuth 응답 수정

Team-E2I4 · Feb 20, 2024 · 30dcdf8 · 30dcdf8
1 parent 32d9c80
commit 30dcdf8
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 5 deletions.
diff --git a/core/core-security/src/main/java/com/pgms/coresecurity/config/WebSecurityConfig.java b/core/core-security/src/main/java/com/pgms/coresecurity/config/WebSecurityConfig.java
@@ -148,6 +148,7 @@ private RequestMatcher[] requestPermitAll() {
 			antMatcher("/h2-console/**"),
 			antMatcher("/api/v1/sse"),
 			antMatcher("/api/v1/auth/login"),
+			antMatcher("/api/v1/auth/guest"),
 			antMatcher("/api/v1/members/sign-up"),
 			antMatcher(GET, "/api/v1/rooms")
 		);

diff --git a/...urity/src/main/java/com/pgms/coresecurity/handler/OAuth2AuthenticationSuccessHandler.java b/...urity/src/main/java/com/pgms/coresecurity/handler/OAuth2AuthenticationSuccessHandler.java
@@ -1,6 +1,7 @@
 package com.pgms.coresecurity.handler;
 
 import java.io.IOException;
+import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 
@@ -51,12 +52,12 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
 		String accessToken = jwtTokenProvider.createAccessToken(userDetails);
 		String refreshToken = jwtTokenProvider.createRefreshToken();
 
-		redisRepository.saveRefreshToken(accessToken, member.getId());
+		redisRepository.saveRefreshToken(refreshToken, member.getId());
+
+		Map<String, Object> body = new HashMap<>();
+		body.put("accessToken", accessToken);
+		body.put("refreshToken", refreshToken);
 
-		Map<String, Object> body = Map.of(
-			"accessToken", accessToken,
-			"refreshToken", refreshToken
-		);
 		HttpResponseUtil.setSuccessResponse(response, HttpStatus.OK, body);
 	}