Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Chat] Websocket Security 개선 #272

Merged
merged 12 commits into from
Nov 9, 2024

Conversation

minisundev
Copy link
Member

#️⃣연관된 이슈

close #271

📝작업 내용

기존에는 채팅방 id / 서버 id만 알면 모두 웹소켓으로 연결해서 구독할 수 있는 보안 상의 허점이 있었는데
웹소켓 연결 시부터 Interceptor를 통해 권한을 확인한 후 연결해서 보안을 강화했습니다

@minisundev minisundev added enhancement 추가 기능 Chat 채팅 관련 기능 labels Nov 4, 2024
@minisundev minisundev requested a review from a team November 4, 2024 14:47
@minisundev minisundev self-assigned this Nov 4, 2024
@minisundev minisundev changed the title Feat/web socket security [Chat] Websocket Security 개선 Nov 5, 2024
@minisundev minisundev merged commit 2d6aece into kSideProject:dev Nov 9, 2024
1 check passed
@minisundev minisundev deleted the feat/web-socket-security branch November 9, 2024 06:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Chat 채팅 관련 기능 enhancement 추가 기능
Projects
Status: Done
Development

Successfully merging this pull request may close these issues.

채팅방/ 서버 채팅방 SUBSCRIBE시에도 해당 채팅방에 권한이 있는지 확인하기
1 participant