Skip to content
This repository was archived by the owner on Dec 6, 2025. It is now read-only.

feat: Swagger 문서 접근 권한 보호(SUPER_ADMIN 한정) 적용#214

Merged
selentia merged 1 commit into
developfrom
feat/protect-swagger-docs
Nov 27, 2025
Merged

feat: Swagger 문서 접근 권한 보호(SUPER_ADMIN 한정) 적용#214
selentia merged 1 commit into
developfrom
feat/protect-swagger-docs

Conversation

@selentia
Copy link
Copy Markdown
Contributor

@selentia selentia commented Nov 27, 2025

개요

운영 환경에서 Swagger API 문서를 외부 사용자에게 노출하지 않도록,
SUPER_ADMIN 사용자만 접근할 수 있도록 보호 로직을 추가했습니다.

주요 변경 사항

  • /docs 라우트에 authMiddlewarerequireRole(['SUPER_ADMIN']) 적용
  • Swagger UI 정적 리소스(css/js)까지 동일 권한으로 보호

참고 사항

  • NODE_ENV === 'production' 조건으로 배포 환경에서만 적용

@selentia selentia added the feat New feature label label Nov 27, 2025
@selentia selentia merged commit fde1372 into develop Nov 27, 2025
1 check passed
@selentia selentia deleted the feat/protect-swagger-docs branch November 27, 2025 01:27
@selentia selentia mentioned this pull request Nov 27, 2025
Merged
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@nodejun nodejun nodejun approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

feat New feature label

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@selentia @nodejun