[BE-157] 권한 변경 API 관리자만 허용 (#407)

* [fix]: 권한 변경 API 관리자만 허용

* [style]: spotless

Author: westzeroright

server/Recruit-Api/src/main/java/com/econovation/recruit/api/config/security/SecurityConfig.java

@@ -97,6 +97,8 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 .hasAnyRole("ROLE_OPERATION", "ROLE_PRESIDENT")
                 .mvcMatchers(HttpMethod.GET, "/api/v1/comments/disclosure")
                 .hasAnyRole("ROLE_OPERATION", "ROLE_PRESIDENT")
+                .mvcMatchers(HttpMethod.PUT, "/api/v1/interviewers/*/roles")
+                .hasAnyRole("ROLE_OPERATION")
                 .anyRequest()
                 .hasAnyRole(RolePattern);
 

server/Recruit-Api/src/main/java/com/econovation/recruit/api/user/service/UserService.java

@@ -106,7 +106,7 @@ private boolean checkPassword(String password, String encodePassword) {
     @Transactional
     public void signUp(SignUpRequestDto signUpRequestDto) {
         String email = signUpRequestDto.getEmail();
-//        checkEmailVerified(email);
+        //        checkEmailVerified(email);
         if (interviewerLoadPort.loadOptionalInterviewerByEmail(email).isPresent())
             throw InterviewerAlreadySubmitException.EXCEPTION;
         String encededPassword = passwordEncoder.encode(signUpRequestDto.getPassword());
@@ -119,7 +119,7 @@ public void signUp(SignUpRequestDto signUpRequestDto) {
                         .role(Role.ROLE_GUEST)
                         .build();
         interviewerRecordPort.save(interviewer);
-//        deleteVerifiedCode(email);
+        //        deleteVerifiedCode(email);
     }
 
     @Override