From c46c3edf67141e057996f424762a9e7b8eeffc04 Mon Sep 17 00:00:00 2001 From: 1Seob Date: Wed, 17 Jun 2026 19:21:44 +0900 Subject: [PATCH] =?UTF-8?q?fix(admin):=20=EC=9A=B4=EC=98=81=20=EC=84=9C?= =?UTF-8?q?=EB=B2=84=20=EA=B4=80=EB=A6=AC=EC=9E=90=20=EB=A1=9C=EA=B7=B8?= =?UTF-8?q?=EC=9D=B8=20=EC=8B=A4=ED=8C=A8=20=EB=8C=80=EC=9D=91?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit 관리자 비밀번호 비교 시 앞뒤 공백을 제거하고, 로그인 실패 기본 메시지에 HTTP 상태 코드를 표시하도록 수정 --- .github/workflows/deploy-to-dev-ec2.yml | 2 +- .github/workflows/deploy-to-prod-ec2.yml | 2 +- .../domain/admin/application/AdminPageAuthCommandService.java | 4 ++-- src/main/resources/templates/admin/login.html | 2 +- 4 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/deploy-to-dev-ec2.yml b/.github/workflows/deploy-to-dev-ec2.yml index c91c571..690bd76 100644 --- a/.github/workflows/deploy-to-dev-ec2.yml +++ b/.github/workflows/deploy-to-dev-ec2.yml @@ -147,7 +147,7 @@ jobs: ANTHROPIC_API_KEY="${{ secrets.ANTHROPIC_API_KEY }}" \ GOOGLE_GENAI_API_KEY="${{ secrets.GOOGLE_GENAI_API_KEY }}" \ FIREBASE_ADMIN_KEY="${{ secrets.FIREBASE_ADMIN_KEY }}" \ - ADMIN_PAGE_PASSWORD="${{ secrets.ADMIN_PAGE_PASSWORD }}" \ + ADMIN_PAGE_PASSWORD='${{ secrets.ADMIN_PAGE_PASSWORD }}' \ DEV_TEST_ACCOUNT_PASSWORD="${{ secrets.DEV_TEST_ACCOUNT_PASSWORD }}" \ nohup java -jar "$JAR_PATH" \ --spring.profiles.active=dev > app.log 2>&1 & diff --git a/.github/workflows/deploy-to-prod-ec2.yml b/.github/workflows/deploy-to-prod-ec2.yml index bf2f312..9dd4ea0 100644 --- a/.github/workflows/deploy-to-prod-ec2.yml +++ b/.github/workflows/deploy-to-prod-ec2.yml @@ -144,7 +144,7 @@ jobs: ANTHROPIC_API_KEY="${{ secrets.ANTHROPIC_API_KEY }}" \ GOOGLE_GENAI_API_KEY="${{ secrets.GOOGLE_GENAI_API_KEY }}" \ FIREBASE_ADMIN_KEY="${{ secrets.FIREBASE_ADMIN_KEY }}" \ - ADMIN_PAGE_PASSWORD="${{ secrets.ADMIN_PAGE_PASSWORD }}" \ + ADMIN_PAGE_PASSWORD='${{ secrets.ADMIN_PAGE_PASSWORD }}' \ nohup java -jar "$JAR_PATH" \ --spring.profiles.active=prod > app-prod.log 2>&1 & diff --git a/src/main/java/com/devkor/ifive/nadab/domain/admin/application/AdminPageAuthCommandService.java b/src/main/java/com/devkor/ifive/nadab/domain/admin/application/AdminPageAuthCommandService.java index 4e236b3..0183c08 100644 --- a/src/main/java/com/devkor/ifive/nadab/domain/admin/application/AdminPageAuthCommandService.java +++ b/src/main/java/com/devkor/ifive/nadab/domain/admin/application/AdminPageAuthCommandService.java @@ -16,8 +16,8 @@ public class AdminPageAuthCommandService { private final AdminPageProperties adminPageProperties; public void validatePassword(String rawPassword) { - byte[] input = rawPassword.getBytes(StandardCharsets.UTF_8); - byte[] expected = adminPageProperties.getPassword().getBytes(StandardCharsets.UTF_8); + byte[] input = rawPassword.strip().getBytes(StandardCharsets.UTF_8); + byte[] expected = adminPageProperties.getPassword().strip().getBytes(StandardCharsets.UTF_8); if (!MessageDigest.isEqual(input, expected)) { throw new UnauthorizedException(ErrorCode.ADMIN_PAGE_INVALID_PASSWORD); diff --git a/src/main/resources/templates/admin/login.html b/src/main/resources/templates/admin/login.html index 0858d5c..b2051df 100644 --- a/src/main/resources/templates/admin/login.html +++ b/src/main/resources/templates/admin/login.html @@ -133,7 +133,7 @@

관리자 로그인

return; } - let message = '로그인에 실패했습니다.'; + let message = `로그인에 실패했습니다. (HTTP ${response.status})`; try { const errorBody = await response.json(); if (errorBody && errorBody.message) {