[BE] SICS1-212 [FIX] cookie 저장 실패 수정

backend/src/main/java/org/sejongisc/backend/common/auth/config/OAuth2SuccessHandler.java

@@ -108,11 +108,13 @@ public void onAuthenticationSuccess(
         String domain = isProd ? "sisc-web.duckdns.org" : "localhost";
 
 
+
         // 6.  HttpOnly 쿠키로 refreshToken 저장
         ResponseCookie accessCookie = ResponseCookie.from("access", accessToken)
                 .httpOnly(true)
                 .secure(secure)    // 로컬=false, 배포=true
                 .sameSite(sameSite)  // 로컬= "Lax", 배포="None"
+                .domain(domain)
                 .path("/")
                 .maxAge(60L * 60)  // 1 hour
                 .build();
@@ -121,6 +123,7 @@ public void onAuthenticationSuccess(
                 .httpOnly(true)
                 .secure(secure)
                 .sameSite(sameSite)
+                .domain(domain)
                 .path("/")
                 .maxAge(60L * 60 * 24 * 14) // 2 weeks
                 .build();

backend/src/main/java/org/sejongisc/backend/common/auth/config/SecurityConfig.java

@@ -6,6 +6,7 @@
 import org.sejongisc.backend.common.auth.springsecurity.JwtAuthenticationFilter;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
+import org.springframework.core.env.Environment;
 import org.springframework.http.HttpMethod;
 import org.springframework.security.config.Customizer;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
@@ -38,6 +39,12 @@ public class SecurityConfig {
     private final CustomOidcUserService customOidcUserService;
     private final OAuth2SuccessHandler oAuth2SuccessHandler;
 
+    private final Environment env;
+
+    private boolean isProd() {
+        return List.of(env.getActiveProfiles()).contains("prod");
+    }
+
     @Bean
     public AuthorizationRequestRepository<OAuth2AuthorizationRequest> authorizationRequestRepository() {
         return new HttpSessionOAuth2AuthorizationRequestRepository();
@@ -63,9 +70,13 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                                 }
                         )
                         .successHandler(oAuth2SuccessHandler)
-                        .failureHandler((req, res, ex) ->
-                                res.sendRedirect("http://localhost:5173/oauth/fail")
-                        )
+                        .failureHandler((req, res, ex) -> {
+                            if (isProd()) {
+                                res.sendRedirect("https://sisc-web.duckdns.org/oauth/fail");
+                            } else {
+                                res.sendRedirect("http://localhost:5173/oauth/fail");
+                            }
+                        })
                 )
 
                 .authorizeHttpRequests(auth -> {
@@ -110,8 +121,8 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
     @Bean
     public CorsConfigurationSource corsConfigurationSource() {
         CorsConfiguration config = new CorsConfiguration();
-        config.setAllowedOrigins(List.of(
-                "http://localhost:5173", // 허용할 프론트 주소
+        config.setAllowedOriginPatterns(List.of(
+                "http://localhost:5173",
                 "https://sisc-web.duckdns.org"
         ));
         config.setAllowedMethods(List.of("GET", "POST", "PUT", "DELETE", "PATCH", "OPTIONS"));