Merge pull request #62 from code-review-platform-flow/FLOW-200

feat: FLOW_HTTPS_WEB_ADDRESS 환경변수 추가 및 CORS 허용

Author: steamedEggMaster

src/main/java/org/flow/gateway/common/security/SecurityConfig.java

@@ -19,6 +19,8 @@ public class SecurityConfig {
 
 	@Value("${FLOW_WEB_ADDRESS}")
 	private String webAddress;
+	@Value("${FLOW_HTTPS_WEB_ADDRESS}")
+	private String httpsWebAddress;
 
 	@Bean
 	public SecurityWebFilterChain securityWebFilterChain(ServerHttpSecurity http) {
@@ -37,7 +39,7 @@ public SecurityWebFilterChain securityWebFilterChain(ServerHttpSecurity http) {
 	@Bean
 	public CorsConfigurationSource corsConfigurationSource() {
 		CorsConfiguration corsConfig = new CorsConfiguration();
-		corsConfig.setAllowedOrigins(Arrays.asList("http://localhost:3000", webAddress));
+		corsConfig.setAllowedOrigins(Arrays.asList("http://localhost:3000", webAddress, httpsWebAddress));
 		corsConfig.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE", "PATCH"));
 		corsConfig.setAllowedHeaders(Arrays.asList("*"));
 		corsConfig.setAllowCredentials(true);

src/main/resources/application-dev.yml

@@ -14,6 +14,7 @@ spring:
               - http://localhost:3000
               - ${FLOW_WEB_ADDRESS}
               - ${FLOW_ADMIN_DASHBOARD_ADDRESS}
+              - ${FLOW_HTTPS_WEB_ADDRESS}
             allowedMethods:
               - GET
               - POST