Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Role 정의 및 API 접근시 Authority 확인 #116

Open
3 tasks
Dokyeongyun opened this issue Sep 8, 2022 · 0 comments
Open
3 tasks

Role 정의 및 API 접근시 Authority 확인 #116

Dokyeongyun opened this issue Sep 8, 2022 · 0 comments
Assignees
@Dokyeongyun
Labels
New Feature New feature or request Security Related with Security (ex. CORS, JWT, Authority)

Comments

@Dokyeongyun
Copy link
Contributor

Problem or enhancements and It's Background

  • 현재 올바른 토큰값만 존재한다면 모든 API에 대해 접근이 가능하다.
  • 관리자와 사용자와 같은 Role을 분리 및 로그인 시 JWT에 담아 부여하도록 하고
  • API 접근 시 Authority를 확인하도록 하자.

Solutions

  • Spring Security를 이용한 RoleAuthority 부여

TODO Tasks

  • Role 정의하기
  • RoleAuthority 부여
  • API 접근 시. Authority 확인
@Dokyeongyun Dokyeongyun added the New Feature New feature or request label Sep 8, 2022
@Dokyeongyun Dokyeongyun self-assigned this Sep 8, 2022
@Dokyeongyun Dokyeongyun added the Security Related with Security (ex. CORS, JWT, Authority) label Sep 17, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Dokyeongyun Dokyeongyun

Labels
New Feature New feature or request Security Related with Security (ex. CORS, JWT, Authority)
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Dokyeongyun