[MOD] jwt cors 수정

10 months ago · bb88470318
parent 667a4c5f57
commit bb88470318
1 changed files with 4 additions and 10 deletions
--- a/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java
+++ b/src/main/java/kr/re/etri/autoflow/common/WebConfiguration.java
@ -12,16 +12,10 @@ public class WebConfiguration implements WebMvcConfigurer {
    @Override
    public void addCorsMappings(CorsRegistry registry) {
        registry.addMapping("/**")
-                .allowedOriginPatterns("*") // allowedOrigins 대신 사용
+                .allowedOriginPatterns("http://localhost:3000", "http://10.10.11.144") // 허용할 Origin 지정
-                .allowedMethods(
+                .allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS")
-                        HttpMethod.GET.name(),
+                .allowedHeaders("*") // 필요하면 "cuuva-jwt", "Content-Type", "Authorization" 명시 가능
-                        HttpMethod.HEAD.name(),
+                .exposedHeaders("cuuva-jwt")
                        HttpMethod.POST.name(),
                        HttpMethod.PUT.name(),
                        HttpMethod.DELETE.name()
                )
                .allowedHeaders("cuuva-jwt", "Content-Type", "Authorization")
                .exposedHeaders("cuuva-jwt") // 응답 헤더 노출
                .allowCredentials(true)
                .maxAge(3600);
    }