feat: cors 설정 추가

kimeunkyoungg · kimeunkyoungg · commit 481d66d9404d · 2025-12-16T18:12:06.000+09:00
diff --git a/backend/src/main/java/com/back/global/config/SecurityConfig.java b/backend/src/main/java/com/back/global/config/SecurityConfig.java
@@ -3,6 +3,7 @@
 import org.springframework.beans.factory.annotation.Value;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpMethod;
 import org.springframework.security.config.annotation.method.configuration.EnableMethodSecurity;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
@@ -34,6 +35,7 @@ SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 
 			.cors(cors -> cors.configurationSource(corsConfigurationSource()))
 			.authorizeHttpRequests(auth -> auth
+				.requestMatchers(HttpMethod.OPTIONS, "/**").permitAll()
 				.requestMatchers("/favicon.ico").permitAll()
 				.requestMatchers("/h2-console/**").permitAll()  // H2 콘솔 접근 허용
 				.requestMatchers("/swagger-ui/**", "/v3/api-docs/**").permitAll()  // Swagger 접근 허용
diff --git a/backend/src/main/resources/application-prod.yml b/backend/src/main/resources/application-prod.yml
@@ -45,6 +45,7 @@ custom:
       - POST
       - PUT
       - DELETE
+      - OPTIONS
     allowed-headers:
       - "*"
 
diff --git a/backend/src/main/resources/application.yml b/backend/src/main/resources/application.yml
@@ -51,6 +51,7 @@ custom:
       - POST
       - PUT
       - DELETE
+      - OPTIONS
     allowed-headers:
       - "*"
 

-Original file line number
+Diff line change
       - POST
       - PUT
       - DELETE
 +      - OPTIONS
     allowed-headers:
       - "*"