Merge pull request #90 from Central-MakeUs/dev

[Bug] oauth2 요청을 반드시 세션에 저장하도록 수정
Central-MakeUs · Feb 10, 2025 · 79e7a0d · 79e7a0d
2 parents 2edff1b + 412590d
commit 79e7a0d
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/src/main/java/com/cmc/mercury/global/config/SecurityConfig.java b/src/main/java/com/cmc/mercury/global/config/SecurityConfig.java
@@ -17,6 +17,7 @@
 import org.springframework.security.oauth2.client.endpoint.DefaultAuthorizationCodeTokenResponseClient;
 import org.springframework.security.oauth2.client.endpoint.OAuth2AccessTokenResponseClient;
 import org.springframework.security.oauth2.client.endpoint.OAuth2AuthorizationCodeGrantRequest;
+import org.springframework.security.oauth2.client.web.HttpSessionOAuth2AuthorizationRequestRepository;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
 import org.springframework.web.cors.CorsConfiguration;
@@ -68,6 +69,8 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
                         .anyRequest().authenticated()
                 )
                 .oauth2Login(oauth2 -> oauth2
+                        .authorizationEndpoint(authorization -> authorization
+                                .authorizationRequestRepository(new HttpSessionOAuth2AuthorizationRequestRepository())) // OAuth2 요청을 세션에 저장하도록 강제
                         .tokenEndpoint(token -> token
                                 .accessTokenResponseClient(accessTokenResponseClient()))
                         .userInfoEndpoint(userInfo -> userInfo