moyeora-it · e-sum-e · Jun 22, 2025 · Jun 22, 2025
diff --git a/config/cookie.js b/config/cookie.js
@@ -1,6 +1,6 @@
 const accessTokenOption = {
   httpOnly: true,
-  secure: false,
+  secure: true,
   sameSite: "None",
   maxAge: 1000 * 60 * 60 * 3,
   path: "/",
@@ -9,7 +9,7 @@ const accessTokenOption = {
 
 const refreshTokenOption = {
   httpOnly: true,
-  secure: false,
+  secure: true,
   sameSite: "None",
   maxAge: 1000 * 60 * 60 * 24 * 7,
   path: "/",
@@ -18,7 +18,7 @@ const refreshTokenOption = {
 
 const clearAccessTokenOption = {
   httpOnly: true,
-  secure: false,
+  secure: true,
   sameSite: "None",
   maxAge: 0,
   path: "/",
@@ -27,7 +27,7 @@ const clearAccessTokenOption = {
 
 const clearRefreshTokenOption = {
   httpOnly: true,
-  secure: false,
+  secure: true,
   sameSite: "None",
   maxAge: 0,
   path: "/",

diff --git a/controllers/authController.js b/controllers/authController.js
@@ -19,13 +19,13 @@ const handleSpringAuth = async (req, res) => {
     // 쿠키에 토큰 저장
     res.cookie("accessToken", result.accessToken, {
       httpOnly: true,
-      secure: false,
+      secure: true,
       sameSite: "None",
     });
 
     res.cookie("refreshToken", result.refreshToken, {
       httpOnly: true,
-      secure: false,
+      secure: true,
       sameSite: "None",
     });