test: 테스트에서만 강제로 Security 우회하도록 수정

DaITssu · Nov 27, 2023 · c3ceed1 · c3ceed1
1 parent a702065
commit c3ceed1
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/src/main/kotlin/com/example/daitssuapi/common/security/component/JwtVerifier.kt b/src/main/kotlin/com/example/daitssuapi/common/security/component/JwtVerifier.kt
@@ -18,7 +18,7 @@ class JwtVerifier(
     private val tokenAlgorithm: Algorithm,
     @Value("\${spring.profiles.active}") private val profile: String
 ) {
-    private val alwaysAllowProfiles = listOf("dev", "local", "test")
+    private val alwaysAllowProfiles = listOf("test")
 
     val tokenVerifier: JWTVerifier = JWT
         .require(tokenAlgorithm)
@@ -27,6 +27,10 @@ class JwtVerifier(
         .build()
 
     fun verify(request: HttpServletRequest): TokenDto? {
+        if (profile in alwaysAllowProfiles) {
+            return TokenDto(userId = 2, userRole = "STUDENT")
+        }
+
         val bearerToken = request.getHeader("Authorization") ?: return null
         if (!bearerToken.startsWith("Bearer ")) {
             return null