From 288a07d0056ef624d690a93da22e5d9d5e98e2f9 Mon Sep 17 00:00:00 2001
From: hen715 <hen715@naver.com>
Date: Tue, 30 Jan 2024 23:14:24 +0900
Subject: [PATCH] =?UTF-8?q?[Refactor]=20CORS=EC=84=A4=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../inuappcenterportal/inuportal/config/SecurityConfig.java   | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/src/main/java/kr/inuappcenterportal/inuportal/config/SecurityConfig.java b/src/main/java/kr/inuappcenterportal/inuportal/config/SecurityConfig.java
index 694a94f..2713f83 100644
--- a/src/main/java/kr/inuappcenterportal/inuportal/config/SecurityConfig.java
+++ b/src/main/java/kr/inuappcenterportal/inuportal/config/SecurityConfig.java
@@ -16,6 +16,7 @@
 import org.springframework.web.cors.CorsConfigurationSource;
 
 import java.util.Collections;
+import java.util.List;
 
 @EnableWebSecurity
 @Configuration
@@ -39,8 +40,9 @@ public CorsConfiguration getCorsConfiguration(HttpServletRequest request) {
                         CorsConfiguration configuration = new CorsConfiguration();
                         configuration.setAllowCredentials(true);
                         configuration.addAllowedHeader("*");
+                        configuration.setExposedHeaders(Collections.singletonList("*"));
                         configuration.setAllowedOrigins(Collections.singletonList("*"));
-                        configuration.setAllowedMethods(Collections.singletonList("*"));
+                        configuration.setAllowedMethods(List.of("GET","POST","DELETE","PUT"));
                         configuration.setMaxAge(3600L);
                         return configuration;
                     }