diff --git a/backend/src/main/java/com/edufocus/edufocus/user/controller/UserController.java b/backend/src/main/java/com/edufocus/edufocus/user/controller/UserController.java index 464020f..2f3abf4 100644 --- a/backend/src/main/java/com/edufocus/edufocus/user/controller/UserController.java +++ b/backend/src/main/java/com/edufocus/edufocus/user/controller/UserController.java @@ -101,9 +101,10 @@ public class UserController { Cookie refreshCookie = new Cookie("refresh-token", refreshToken); refreshCookie.setPath("/"); refreshCookie.setHttpOnly(true); - // refreshCookie.setSecure(true); // HTTPS에서만 전송되도록 설정 + refreshCookie.setSecure(true); // HTTPS에서만 전송되도록 설정 //r/efreshCookie.setSameSite(Cookie.SameSite.NONE); // Cross-Origin 요청에 대해 모두 전송 //refreshCookie.setSameSite("None"); // Cross-Origin 요청에 대해 모두 전송 + String cookieHeader = String.format("refresh-token=%s; Path=/; HttpOnly; Secure; SameSite=None", refreshToken); response.setHeader("Set-Cookie", cookieHeader);