spotless

2026-03-10 15:25:32 +09:00
parent 8d83505ee7
commit 7fce070686
1 changed files with 55 additions and 57 deletions
--- a/src/main/java/com/kamco/cd/training/config/SecurityConfig.java
+++ b/src/main/java/com/kamco/cd/training/config/SecurityConfig.java
@@ -3,7 +3,6 @@ package com.kamco.cd.training.config;
 import com.kamco.cd.training.auth.CustomAuthenticationProvider;
 import com.kamco.cd.training.auth.JwtAuthenticationFilter;
 import java.util.List;
-import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.http.HttpMethod;
@@ -26,78 +25,77 @@ import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
@EnableWebSecurity
 public class SecurityConfig {

-
  @Bean
  public SecurityFilterChain securityFilterChain(
-    org.springframework.security.config.annotation.web.builders.HttpSecurity http,
-    JwtAuthenticationFilter jwtAuthenticationFilter,
-    CustomAuthenticationProvider customAuthenticationProvider)
-    throws Exception {
+      org.springframework.security.config.annotation.web.builders.HttpSecurity http,
+      JwtAuthenticationFilter jwtAuthenticationFilter,
+      CustomAuthenticationProvider customAuthenticationProvider)
+      throws Exception {

    http.cors(cors -> cors.configurationSource(corsConfigurationSource()))
-      .csrf(csrf -> csrf.disable())
-      .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
-      .formLogin(form -> form.disable())
+        .csrf(csrf -> csrf.disable())
+        .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
+        .formLogin(form -> form.disable())

-      // /monitor 에서 Basic 인증을 쓰려면 disable 하면 안됨
-      .httpBasic(basic -> {})
-      .logout(logout -> logout.disable())
-      .authenticationProvider(customAuthenticationProvider)
-      .authorizeHttpRequests(
-        auth ->
-          auth
+        // /monitor 에서 Basic 인증을 쓰려면 disable 하면 안됨
+        .httpBasic(basic -> {})
+        .logout(logout -> logout.disable())
+        .authenticationProvider(customAuthenticationProvider)
+        .authorizeHttpRequests(
+            auth ->
+                auth

-            // monitor
-            .requestMatchers("/monitor/health", "/monitor/health/**")
-            .permitAll()
-            .requestMatchers("/monitor/**")
-            .authenticated() // Basic으로 인증되게끔
+                    // monitor
+                    .requestMatchers("/monitor/health", "/monitor/health/**")
+                    .permitAll()
+                    .requestMatchers("/monitor/**")
+                    .authenticated() // Basic으로 인증되게끔

-            // mapsheet
-            .requestMatchers("/api/mapsheet/**")
-            .permitAll()
-            .requestMatchers(HttpMethod.POST, "/api/mapsheet/upload")
-            .permitAll()
+                    // mapsheet
+                    .requestMatchers("/api/mapsheet/**")
+                    .permitAll()
+                    .requestMatchers(HttpMethod.POST, "/api/mapsheet/upload")
+                    .permitAll()

-            // test role
-            .requestMatchers("/api/test/admin")
-            .hasRole("ADMIN")
-            .requestMatchers("/api/test/label")
-            .hasAnyRole("ADMIN", "LABELER")
-            .requestMatchers("/api/test/review")
-            .hasAnyRole("ADMIN", "REVIEWER")
+                    // test role
+                    .requestMatchers("/api/test/admin")
+                    .hasRole("ADMIN")
+                    .requestMatchers("/api/test/label")
+                    .hasAnyRole("ADMIN", "LABELER")
+                    .requestMatchers("/api/test/review")
+                    .hasAnyRole("ADMIN", "REVIEWER")

-            // common permit
-            .requestMatchers("/error")
-            .permitAll()
-            .requestMatchers(HttpMethod.OPTIONS, "/**")
-            .permitAll()
-            .requestMatchers(
-              "/api/auth/signin",
-              "/api/auth/refresh",
-              "/api/auth/logout",
-              "/swagger-ui/**",
-              "/v3/api-docs/**",
-              "/api/upload/chunk-upload-dataset",
-              "/api/upload/chunk-upload-complete",
-              "/download_progress_test.html",
-              "/api/models/download/**")
-            .permitAll()
-            .requestMatchers("/api/members/*/password")
-            .authenticated()
-            // default
-            .anyRequest()
-            .authenticated())
+                    // common permit
+                    .requestMatchers("/error")
+                    .permitAll()
+                    .requestMatchers(HttpMethod.OPTIONS, "/**")
+                    .permitAll()
+                    .requestMatchers(
+                        "/api/auth/signin",
+                        "/api/auth/refresh",
+                        "/api/auth/logout",
+                        "/swagger-ui/**",
+                        "/v3/api-docs/**",
+                        "/api/upload/chunk-upload-dataset",
+                        "/api/upload/chunk-upload-complete",
+                        "/download_progress_test.html",
+                        "/api/models/download/**")
+                    .permitAll()
+                    .requestMatchers("/api/members/*/password")
+                    .authenticated()
+                    // default
+                    .anyRequest()
+                    .authenticated())

-      // JWT 필터는 앞단에
-      .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);
+        // JWT 필터는 앞단에
+        .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);

    return http.build();
  }

  @Bean
  public AuthenticationManager authenticationManager(AuthenticationConfiguration configuration)
-    throws Exception {
+      throws Exception {
    return configuration.getAuthenticationManager();
  }