From 1cf608e3c1e3b8a15f5e0e5d711dfa8907052431 Mon Sep 17 00:00:00 2001 From: LeeMyeongJin Date: Thu, 19 Feb 2026 21:20:57 +0900 Subject: [PATCH] =?UTF-8?q?feat:=20=EA=B4=80=EB=A6=AC=EC=9E=90=20=EA=B3=B5?= =?UTF-8?q?=EA=B0=9C=20=EC=BD=94=EC=8A=A4=20=EC=82=AD=EC=A0=9C=20=EA=B6=8C?= =?UTF-8?q?=ED=95=9C=20=EC=B6=94=EA=B0=80?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - userId 280(관리자)에 대해 공개 코스 삭제 시 소유자 검증 우회 - 비관리자 기존 동작 유지 --- .../server/publicCourse/service/PublicCourseService.java | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/src/main/java/org/runnect/server/publicCourse/service/PublicCourseService.java b/src/main/java/org/runnect/server/publicCourse/service/PublicCourseService.java index 2ab5c99..c99a026 100644 --- a/src/main/java/org/runnect/server/publicCourse/service/PublicCourseService.java +++ b/src/main/java/org/runnect/server/publicCourse/service/PublicCourseService.java @@ -350,8 +350,10 @@ public DeletePublicCoursesResponseDto deletePublicCourses( throw new NotFoundException(ErrorStatus.NOT_FOUND_PUBLICCOURSE_EXCEPTION, ErrorStatus.NOT_FOUND_PUBLICCOURSE_EXCEPTION.getMessage()); } + boolean isAdmin = userId.equals(280L); + publicCourses.stream() - .filter(pc -> !pc.getCourse().getRunnectUser().equals(user)) + .filter(pc -> !isAdmin && !pc.getCourse().getRunnectUser().equals(user)) .findAny() .ifPresent(pc -> { throw new PermissionDeniedException(