From d55f59540c83a6b731193b49d79810dc2ba1354e Mon Sep 17 00:00:00 2001
From: su080915 <tbr335@naver.com>
Date: Tue, 27 Aug 2024 09:28:38 +0900
Subject: [PATCH] fixed config

---
 .../global/config/security/SecurityConfig.java       | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/crescendo-server/src/main/java/com/example/crescendoserver/global/config/security/SecurityConfig.java b/crescendo-server/src/main/java/com/example/crescendoserver/global/config/security/SecurityConfig.java
index 76096d5..34fc184 100644
--- a/crescendo-server/src/main/java/com/example/crescendoserver/global/config/security/SecurityConfig.java
+++ b/crescendo-server/src/main/java/com/example/crescendoserver/global/config/security/SecurityConfig.java
@@ -54,12 +54,12 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                         .requestMatchers(HttpMethod.GET, "/ws/chat").permitAll()
                         .requestMatchers(HttpMethod.POST, "/chat").permitAll()
                         .requestMatchers(HttpMethod.GET, "/chat").permitAll()
-                        .requestMatchers(HttpMethod.GET, "/todos/{todoId}").authenticated()
-                        .requestMatchers(HttpMethod.GET, "/todos").authenticated()
-                        .requestMatchers(HttpMethod.POST, "/todos").authenticated()
-                        .requestMatchers(HttpMethod.PATCH, "/todos/{todoId}/check").authenticated()
-                        .requestMatchers(HttpMethod.PATCH, "/todos/{todoId}").authenticated()
-                        .requestMatchers(HttpMethod.DELETE, "/todos/{todoId}").authenticated()
+                        .requestMatchers(HttpMethod.GET, "/todos/{todoId}").permitAll()
+                        .requestMatchers(HttpMethod.GET, "/todos").permitAll()
+                        .requestMatchers(HttpMethod.POST, "/todos").permitAll()
+                        .requestMatchers(HttpMethod.PATCH, "/todos/{todoId}/check").permitAll()
+                        .requestMatchers(HttpMethod.PATCH, "/todos/{todoId}").permitAll()
+                        .requestMatchers(HttpMethod.DELETE, "/todos/{todoId}").permitAll()
                         .requestMatchers(HttpMethod.GET, "/posts/{postId}").authenticated()
                         .requestMatchers(HttpMethod.GET, "/posts").authenticated()
                         .requestMatchers(HttpMethod.POST, "/posts").authenticated()