Merge pull request #46 from code-review-platform-flow/FLOW-84

feat: order 수정

Author: abwarten

src/main/java/org/flow/gateway/common/security/SecurityConfig.java

@@ -1,10 +1,10 @@
 package org.flow.gateway.common.security;
 
 import java.util.Arrays;
+import java.util.Collections;
 
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
-import org.springframework.security.config.Customizer;
 import org.springframework.security.config.annotation.web.reactive.EnableWebFluxSecurity;
 import org.springframework.security.config.web.server.ServerHttpSecurity;
 import org.springframework.security.web.server.SecurityWebFilterChain;
@@ -19,21 +19,21 @@ public class SecurityConfig {
 	@Bean
 	public SecurityWebFilterChain securityWebFilterChain(ServerHttpSecurity http) {
 		http
-			.csrf(ServerHttpSecurity.CsrfSpec::disable)  // CSRF 비활성화
-			.cors(corsSpec -> corsSpec.configurationSource(corsConfigurationSource()))  // CORS 설정 추가
+			.csrf(ServerHttpSecurity.CsrfSpec::disable)
+			.cors(corsSpec -> corsSpec.configurationSource(corsConfigurationSource()))
 			.authorizeExchange(exchanges -> exchanges
 				.anyExchange().permitAll()
 			)
-			.formLogin(Customizer.withDefaults())
-			.httpBasic(Customizer.withDefaults());
+			.httpBasic(ServerHttpSecurity.HttpBasicSpec::disable)
+			.formLogin(ServerHttpSecurity.FormLoginSpec::disable);
 
 		return http.build();
 	}
 
 	@Bean
 	public CorsConfigurationSource corsConfigurationSource() {
 		CorsConfiguration corsConfig = new CorsConfiguration();
-		corsConfig.setAllowedOrigins(Arrays.asList("http://localhost:3000", "http://your-other-allowed-origin.com"));
+		corsConfig.setAllowedOrigins(Collections.singletonList("http://localhost:3000"));
 		corsConfig.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE"));
 		corsConfig.setAllowedHeaders(Arrays.asList("*"));
 		corsConfig.setAllowCredentials(true);