fix : /login에서 발생하는 Headers에 대한 CORS 수정

move-hoon · move-hoon · commit a796c8b74ad3 · 2023-08-29T02:14:37.000+09:00
diff --git a/src/main/java/leets/reminiscence/global/config/SecurityConfig.java b/src/main/java/leets/reminiscence/global/config/SecurityConfig.java
@@ -63,7 +63,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                 // 아이콘, css, js 관련
                 // 기본 페이지, css, image, js 하위 폴더에 있는 자료들은 모두 접근 가능, h2-console에 접근 가능
                 .antMatchers("/","/css/**","/images/**","/js/**","/favicon.ico","/h2-console/**").permitAll()
-                .antMatchers("/sign-up").permitAll() // 회원가입 접근git 가능
+                .antMatchers("/sign-up").permitAll() // 회원가입 접근 가능
                 .antMatchers(HttpMethod.OPTIONS, "/api/**").permitAll()
                 .antMatchers("/post").permitAll() // post 접근 가능
                 .antMatchers("/post/{id}").permitAll() // post id 정보 접근 가능
diff --git a/src/main/java/leets/reminiscence/global/config/WebConfig.java b/src/main/java/leets/reminiscence/global/config/WebConfig.java
@@ -12,6 +12,7 @@ public void addCorsMappings(final CorsRegistry registry) {
                 .allowedOrigins("http://localhost:3000", "http://localhost:8080")
                 .allowedMethods("GET", "POST", "PUT", "DELETE")
                 .allowCredentials(true)
-                .maxAge(3000);
+                .exposedHeaders("Authorization", "Authorization-refresh")
+                .maxAge(3600);
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,7 @@ public void addCorsMappings(final CorsRegistry registry) {`
`12`	`12`	`.allowedOrigins("http://localhost:3000", "http://localhost:8080")`
`13`	`13`	`.allowedMethods("GET", "POST", "PUT", "DELETE")`
`14`	`14`	`.allowCredentials(true)`
`15`		`- .maxAge(3000);`
	`15`	`+ .exposedHeaders("Authorization", "Authorization-refresh")`
	`16`	`+ .maxAge(3600);`
`16`	`17`	`}`
`17`	`18`	`}`