Merge branch 'release/v1.0.6'

bumooo · bumooo · commit da613f655663 · 2025-03-25T09:44:33.000+09:00
diff --git a/api/src/main/resources/local/application-api.yaml b/api/src/main/resources/local/application-api.yaml
@@ -9,4 +9,4 @@ spring:
 kakao:
   authorize-url: https://kauth.kakao.com/oauth/authorize?response_type=code&client_id={0}&redirect_uri={1}
   app-key: ENC(la2O8hAJw/5PQXn8KxMXPDaAdnyXKBCGLZeI1uRkka+m2hbbtz+FmdQg3RE/B/aE)
-  redirect-url: http://localhost:8080/api/kakao/login
+  redirect-url: https://mbtips.kr/kakao-login
diff --git a/api/src/main/resources/prod/application-api.yaml b/api/src/main/resources/prod/application-api.yaml
@@ -9,4 +9,4 @@ spring:
 kakao:
   authorize-url: https://kauth.kakao.com/oauth/authorize?response_type=code&client_id={0}&redirect_uri={1}
   app-key: ENC(la2O8hAJw/5PQXn8KxMXPDaAdnyXKBCGLZeI1uRkka+m2hbbtz+FmdQg3RE/B/aE)
-  redirect-url: http://34.47.114.108:8080/api/kakao/login
+  redirect-url: https://mbtips.kr/kakao-login
diff --git a/core/src/main/java/com/mbtips/common/configuration/SecurityConfiguration.java b/core/src/main/java/com/mbtips/common/configuration/SecurityConfiguration.java
@@ -12,6 +12,11 @@
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.CorsConfigurationSource;
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
+
+import java.util.List;
 
 import static org.springframework.security.config.http.SessionCreationPolicy.STATELESS;
 
@@ -37,4 +42,20 @@ public SecurityFilterChain configure(HttpSecurity http) throws Exception {
                 .authorizeHttpRequests(authorize -> authorize.anyRequest().permitAll())
                 .build();
     }
+
+    @Bean
+    public CorsConfigurationSource corsConfiguration() {
+        CorsConfiguration corsConfiguration = new CorsConfiguration();
+        corsConfiguration.setAllowedOrigins(List.of(
+                "*",
+                "http://34.47.114.108:3000",
+                "https://mbitips.kr"
+        ));
+        corsConfiguration.setAllowCredentials(true);
+        corsConfiguration.setAllowedHeaders(List.of("*"));
+        corsConfiguration.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE", "PATCH"));
+        UrlBasedCorsConfigurationSource urlBasedCorsConfigurationSource = new UrlBasedCorsConfigurationSource();
+        urlBasedCorsConfigurationSource.registerCorsConfiguration("/**", corsConfiguration);
+        return urlBasedCorsConfigurationSource;
+    }
 }
