Merge pull request #11 from DevKor-github/dev

fix: securityconfig cors 추가

Author: eastlight82

src/main/java/com/workingdead/config/CorsConfig.java

@@ -18,7 +18,8 @@ public CorsConfigurationSource corsConfigurationSource() {
                 "http://10.0.2.2:8080",
                 "http://localhost:5173",
                 "http://whend.app",
-                "https://whend.app"
+                "https://whend.app",
+                "https://whendy.netlify.app"
         ));
         config.setAllowedMethods(List.of("GET","POST","PUT","PATCH","DELETE","OPTIONS"));
         config.setAllowedHeaders(List.of("*"));

src/main/java/com/workingdead/config/SecurityConfig.java

@@ -5,14 +5,16 @@
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.web.cors.CorsConfigurationSource;
 
 @Configuration
 @EnableWebSecurity
 public class SecurityConfig {
 
     @Bean
-    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
+    public SecurityFilterChain filterChain(HttpSecurity http, CorsConfigurationSource corsConfigurationSource) throws Exception {
         http
+                .cors(cors -> cors.configurationSource(corsConfigurationSource))
                 .csrf(csrf -> csrf.disable())
                 .formLogin(form -> form.disable())  // 기본 로그인 폼 비활성화
                 .httpBasic(basic -> basic.disable()) // 브라우저 팝업 로그인 비활성화