Merge pull request #63 from INFP-Study/feature/cors

[FEATURE] E4-S1 로그인 API - websecurityconfig 수정 #28
INFP-Study · Oct 26, 2021 · 4f1e8c8 · 4f1e8c8
2 parents a57c50a + 726db89
commit 4f1e8c8
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/backend/src/main/java/com/infp/ciat/config/security/WebSecurityConfig.java b/backend/src/main/java/com/infp/ciat/config/security/WebSecurityConfig.java
@@ -54,7 +54,7 @@ protected void configure(HttpSecurity http) throws Exception {
         http.csrf().disable();
         http
             .authorizeRequests()
-            .antMatchers("/user/signup").authenticated()
+            .antMatchers("/user/signup").permitAll()
             .and()
         .formLogin()
             .usernameParameter("email")
@@ -81,7 +81,7 @@ public void onAuthenticationSuccess(HttpServletRequest request, HttpServletRespo
     @Bean
     public CorsConfigurationSource corsConfigurationSource() {
         CorsConfiguration corsConfiguration = new CorsConfiguration();
-        corsConfiguration.addAllowedOrigin("*");
+        corsConfiguration.addAllowedOriginPattern("*");
         corsConfiguration.addAllowedHeader("*");
         corsConfiguration.addAllowedMethod("*");
         corsConfiguration.addExposedHeader("JSESSIONID");