feat: cors SecurityConfig 설정 수정

steamedEggMaster · steamedEggMaster · commit de57f8ec08d8 · 2024-12-02T22:14:32.000+09:00
- setAllowedOrigins 여러개 쓰면 마지막 것만 적용됨
diff --git a/src/main/java/org/flow/gateway/common/security/SecurityConfig.java b/src/main/java/org/flow/gateway/common/security/SecurityConfig.java
@@ -37,8 +37,7 @@ public SecurityWebFilterChain securityWebFilterChain(ServerHttpSecurity http) {
 	@Bean
 	public CorsConfigurationSource corsConfigurationSource() {
 		CorsConfiguration corsConfig = new CorsConfiguration();
-		corsConfig.setAllowedOrigins(Collections.singletonList("http://localhost:3000"));
-		corsConfig.setAllowedOrigins(Collections.singletonList(webAddress));
+		corsConfig.setAllowedOrigins(Arrays.asList("http://localhost:3000", webAddress));
 		corsConfig.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE"));
 		corsConfig.setAllowedHeaders(Arrays.asList("*"));
 		corsConfig.setAllowCredentials(true);
