From abe37c5b50250a46bcabf1afef0250a84453f7d0 Mon Sep 17 00:00:00 2001
From: Kim Daehyeon <daehyeon3351@gmail.com>
Date: Wed, 28 Feb 2024 01:55:55 +0900
Subject: [PATCH] =?UTF-8?q?fix:=20sameSite=20=EC=A0=81=EC=9A=A9=20-=20#24?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/main/java/org/mjulikelion/baker/config/SecurityConfig.java | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java b/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java
index 1d395d4..6af3a4c 100644
--- a/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java
+++ b/src/main/java/org/mjulikelion/baker/config/SecurityConfig.java
@@ -19,6 +19,7 @@
 import org.mjulikelion.baker.filter.JwtFilter;
 import org.mjulikelion.baker.util.security.JwtTokenProvider;
 import org.springframework.beans.factory.annotation.Value;
+import org.springframework.boot.web.server.Cookie.SameSite;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.http.HttpStatus;
@@ -74,6 +75,8 @@ public SecurityFilterChain securityFilterChain(HttpSecurity httpSecurity) throws
                             .logoutSuccessHandler((request, response, authentication) -> {
                                 ResponseCookie cookie = ResponseCookie.from(ACCESS_TOKEN, "")
                                         .maxAge(ZERO)
+                                        .sameSite(String.valueOf(SameSite.NONE))
+                                        .secure(true)
                                         .path("/")
                                         .build();
                                 response.addHeader("Set-Cookie", cookie.toString());