RollBack

Author: okjunges

src/main/java/com/rightmark/global/config/SecurityConfig.java

@@ -1,6 +1,5 @@
 package com.rightmark.global.config;
 
-import jakarta.servlet.http.HttpServletResponse;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.security.authentication.AuthenticationManager;
@@ -42,24 +41,6 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
             .cors(cors -> cors.configurationSource(corsConfigurationSource)) //  CORS 설정 추가
             .sessionManagement(sm ->
                     sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS)) // 세션 미사용
-
-            // FE 배포로 인한 우회 인증
-            .formLogin(form -> form.disable())
-            .httpBasic(basic -> basic.disable())
-
-            .exceptionHandling(ex -> ex
-                    .authenticationEntryPoint((req, res, e) -> {
-                        res.setStatus(HttpServletResponse.SC_UNAUTHORIZED); // 401
-                        res.setContentType("application/json;charset=UTF-8");
-                        res.getWriter().write("{\"message\":\"UNAUTHORIZED\"}");
-                    })
-                    .accessDeniedHandler((req, res, e) -> {
-                        res.setStatus(HttpServletResponse.SC_FORBIDDEN); // 403
-                        res.setContentType("application/json;charset=UTF-8");
-                        res.getWriter().write("{\"message\":\"FORBIDDEN\"}");
-                    })
-            )
-
             .authorizeHttpRequests(auth -> auth
                     .requestMatchers(
                             "/api/users/register", "/api/users/login",

src/main/resources/application.yml

@@ -170,7 +170,6 @@ spring:
             user-name-attribute: id
 
 server:
-  forward-headers-strategy: framework
   jackson:
     property-naming-strategy: SNAKE_CASE