Team-BC-1 · yunjae62 · Feb 7, 2024 · Feb 7, 2024 · Feb 7, 2024
diff --git a/src/main/java/bc1/gream/domain/admin/controller/AdminController.java b/src/main/java/bc1/gream/domain/admin/controller/AdminController.java
@@ -52,7 +52,7 @@ public RestResponse<List<AdminGetRefundResponseDto>> getRefunds(AdminGetRefundRe
     @PostMapping("/products")
     @Operation(summary = "상품 생성 요청 [어드민 ONLY]", description = "어드민 권한의 관리자의 상품 생성 요청을 처리합니다.")
     public RestResponse<AdminProductResponseDto> addProducts(
-        @Valid @RequestBody AdminProductRequestDto adminProductRequestDto
+        @Valid AdminProductRequestDto adminProductRequestDto
     ) {
         productCommandService.addProduct(adminProductRequestDto);
 

diff --git a/src/main/java/bc1/gream/global/security/WebSecurityConfig.java b/src/main/java/bc1/gream/global/security/WebSecurityConfig.java
@@ -115,7 +115,7 @@ private void settingRequestAuthorization(HttpSecurity http) throws Exception {
                 // 상품 도메인
                 .requestMatchers(HttpMethod.GET, "/api/products/**").permitAll()
                 // 관리자 도메인
-                .requestMatchers(HttpMethod.GET, "/api/admin/**").hasAuthority(UserRole.ADMIN.getAuthority())
+                .requestMatchers("/api/admin/**").hasAuthority(UserRole.ADMIN.getAuthority())
                 // health 체크
                 .requestMatchers(HttpMethod.GET, "/actuator/**").permitAll()
                 .requestMatchers(HttpMethod.GET, "/actuator").permitAll()