#63 [CI/CD] Nginx Reverse Proxy 및 Certbot 기반의 SSL 인증 (#71)

Author: si-zero

src/main/java/com/swyp/app/global/config/SwaggerConfig.java

@@ -5,8 +5,13 @@
 import io.swagger.v3.oas.models.info.Info;
 import io.swagger.v3.oas.models.security.SecurityRequirement;
 import io.swagger.v3.oas.models.security.SecurityScheme;
+import java.util.Arrays;
+import java.util.List;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.web.cors.CorsConfiguration;
+import org.springframework.web.cors.CorsConfigurationSource;
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
 
 @Configuration
 public class SwaggerConfig {
@@ -32,4 +37,30 @@ public OpenAPI openAPI() {
                                     .addSecuritySchemes("bearerAuth", securityScheme))
                 .addSecurityItem(securityRequirement);
     }
+
+    @Bean
+    public CorsConfigurationSource corsConfigurationSource() {
+        CorsConfiguration configuration = new CorsConfiguration();
+
+        // 허용할 오리진(도메인) 설정
+        configuration.setAllowedOrigins(List.of(
+                "http://localhost:3000",
+                "https://picke.store",
+                "https://www.picke.store"
+        ));
+
+        // 허용할 HTTP 메서드
+        configuration.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"));
+
+        // 허용할 헤더
+        configuration.setAllowedHeaders(List.of("*"));
+
+        // 자격 증명(쿠키, Authorization 헤더 등) 허용
+        configuration.setAllowCredentials(true);
+
+        // 모든 경로(/**)에 대해 위 설정 적용
+        UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
+        source.registerCorsConfiguration("/**", configuration);
+        return source;
+    }
 }