feat #18 - feat corsConfigurationSource

cors error 해결을 위한 cors 설정 허용

Author: cheesecrust

src/main/java/org/capstone/maru/security/config/SecurityConfig.java

@@ -1,6 +1,7 @@
 package org.capstone.maru.security.config;
 
 
+import java.util.Collections;
 import lombok.extern.slf4j.Slf4j;
 import org.capstone.maru.security.service.CustomOAuth2UserService;
 import org.springframework.beans.factory.annotation.Qualifier;
@@ -15,6 +16,8 @@
 import org.springframework.security.web.AuthenticationEntryPoint;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.AuthenticationFailureHandler;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.CorsConfigurationSource;
 
 @Slf4j
 @Configuration
@@ -25,6 +28,18 @@ public class SecurityConfig {
 
     private final AuthenticationFailureHandler authFailureHandler;
 
+    CorsConfigurationSource corsConfigurationSource() {
+        return request -> {
+            CorsConfiguration config = new CorsConfiguration();
+            config.setAllowedHeaders(Collections.singletonList("*"));
+            config.setAllowedMethods(Collections.singletonList("*"));
+            config.setAllowedOriginPatterns(
+                Collections.singletonList("http://localhost:3000")); // ⭐️ 허용할 origin
+            config.setAllowCredentials(true);
+            return config;
+        };
+    }
+
     public SecurityConfig(
         @Qualifier("customAuthenticationEntryPoint") AuthenticationEntryPoint authEntryPoint,
         @Qualifier("customAuthenticationFailureHandler") AuthenticationFailureHandler authFailureHandler
@@ -37,7 +52,7 @@ public SecurityConfig(
     @ConditionalOnProperty(name = "spring.h2.console.enabled", havingValue = "true")
     public WebSecurityCustomizer configureH2ConsoleEnable() {
         return web -> web.ignoring()
-                         .requestMatchers(PathRequest.toH2Console());
+            .requestMatchers(PathRequest.toH2Console());
     }
 
     @Bean