Merge pull request #64 from dnd-side-project/dev

CORS 설정

Author: gzhan0226

api-server/src/main/java/com/example/demo/global/cors/WebFluxCorsConfig.java

@@ -0,0 +1,33 @@
+package com.example.demo.global.cors;
+
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.reactive.CorsWebFilter;
+import org.springframework.web.cors.reactive.UrlBasedCorsConfigurationSource;
+
+import java.util.List;
+
+@Configuration
+public class WebFluxCorsConfig {
+
+    @Bean
+    public CorsWebFilter corsWebFilter() {
+        CorsConfiguration config = new CorsConfiguration();
+        // 자격증명(쿠키/Authorization) 허용 시 오리진은 반드시 구체적으로 나열
+        config.setAllowCredentials(true);
+        config.setAllowedOrigins(List.of(
+                "http://localhost:5173",
+                "https://deulak-dev.vercel.app",
+                "https://deulak.com"
+        ));
+        config.setAllowedMethods(List.of("GET","POST","PUT","PATCH","DELETE","OPTIONS"));
+        config.setAllowedHeaders(List.of("*"));
+        config.setExposedHeaders(List.of("Authorization","Location"));
+        config.setMaxAge(3600L);
+
+        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
+        source.registerCorsConfiguration("/**", config);
+        return new CorsWebFilter(source);
+    }
+}

chat-server/src/main/java/com/example/demo/global/cors/WebMvcCorsConfig.java

@@ -0,0 +1,24 @@
+package com.example.demo.global.cors;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.CorsRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+public class WebMvcCorsConfig implements WebMvcConfigurer {
+
+    @Override
+    public void addCorsMappings(CorsRegistry registry) {
+        registry.addMapping("/**") // 모든 엔드포인트에 CORS 적용
+                .allowedOrigins(
+                        "http://localhost:5173",
+                        "https://deulak-dev.vercel.app",
+                        "https://deulak.com"
+                )
+                .allowedMethods("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS")
+                .allowedHeaders("*")
+                .exposedHeaders("Authorization", "Location")
+                .allowCredentials(true)
+                .maxAge(3600); // preflight 결과 캐싱 (초 단위)
+    }
+}

main-server/src/main/java/com/example/demo/global/cors/WebMvcCorsConfig.java

@@ -0,0 +1,24 @@
+package com.example.demo.global.cors;
+
+import org.springframework.context.annotation.Configuration;
+import org.springframework.web.servlet.config.annotation.CorsRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
+
+@Configuration
+public class WebMvcCorsConfig implements WebMvcConfigurer {
+
+    @Override
+    public void addCorsMappings(CorsRegistry registry) {
+        registry.addMapping("/**") // 모든 엔드포인트에 CORS 적용
+                .allowedOrigins(
+                        "http://localhost:5173",
+                        "https://deulak-dev.vercel.app",
+                        "https://deulak.com"
+                )
+                .allowedMethods("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS")
+                .allowedHeaders("*")
+                .exposedHeaders("Authorization", "Location")
+                .allowCredentials(true)
+                .maxAge(3600); // preflight 결과 캐싱 (초 단위)
+    }
+}