diff --git a/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java b/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java
index ec1a9e6..d8f1e77 100644
--- a/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java
+++ b/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java
@@ -12,16 +12,10 @@ public class WebConfiguration implements WebMvcConfigurer {
     @Override
     public void addCorsMappings(CorsRegistry registry) {
         registry.addMapping("/**")
-                .allowedOriginPatterns("*") // allowedOrigins 대신 사용
-                .allowedMethods(
-                        HttpMethod.GET.name(),
-                        HttpMethod.HEAD.name(),
-                        HttpMethod.POST.name(),
-                        HttpMethod.PUT.name(),
-                        HttpMethod.DELETE.name()
-                )
-                .allowedHeaders("cuuva-jwt", "Content-Type", "Authorization")
-                .exposedHeaders("cuuva-jwt") // 응답 헤더 노출
+                .allowedOriginPatterns("http://localhost:3000", "http://10.10.11.144") // 허용할 Origin 지정
+                .allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS")
+                .allowedHeaders("*") // 필요하면 "cuuva-jwt", "Content-Type", "Authorization" 명시 가능
+                .exposedHeaders("cuuva-jwt")
                 .allowCredentials(true)
                 .maxAge(3600);
     }