From de14ee53099261570167e6a4516b8a2311729a89 Mon Sep 17 00:00:00 2001 From: ajeong Date: Thu, 29 Aug 2024 18:50:00 +0900 Subject: [PATCH] =?UTF-8?q?Fix:=20CORS=20=EC=98=A4=EB=A5=98=20=EC=88=98?= =?UTF-8?q?=EC=A0=95=20#69?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../java/WELLET/welletServer/config/SecurityConfig.java | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/src/main/java/WELLET/welletServer/config/SecurityConfig.java b/src/main/java/WELLET/welletServer/config/SecurityConfig.java index f1f4ea6..ebc3eb8 100644 --- a/src/main/java/WELLET/welletServer/config/SecurityConfig.java +++ b/src/main/java/WELLET/welletServer/config/SecurityConfig.java @@ -26,13 +26,14 @@ public class SecurityConfig { @Bean public CorsConfigurationSource corsConfigurationSource() { CorsConfiguration configuration = new CorsConfiguration(); - configuration.addAllowedOrigin(allowedOrigin); // 허용할 origin 설정 + configuration.addAllowedOrigin("http://localhost:5173"); + configuration.addAllowedOrigin(allowedOrigin); configuration.addAllowedMethod("*"); // 모든 HTTP 메소드 허용 configuration.addAllowedHeader("*"); // 모든 헤더 허용 configuration.setAllowCredentials(true); // 쿠키 허용 UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource(); - source.registerCorsConfiguration("/**", configuration); // 모든 경로에 대해 위 설정 적용 + source.registerCorsConfiguration("/**", configuration); return source; } @@ -46,8 +47,8 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception { .csrf(AbstractHttpConfigurer::disable) .authorizeHttpRequests(request -> { request.requestMatchers( -// antMatcher("/health") - antMatcher("/**") + antMatcher("/health") +// antMatcher("/**") ).permitAll() .anyRequest().authenticated(); });