From 389ae586dcee349761a773a2411348895ab22baa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=EC=9D=B4=EB=8F=99=ED=9B=88?=
 <64298482+dh2906@users.noreply.github.com>
Date: Wed, 1 Apr 2026 23:13:23 +0900
Subject: [PATCH] =?UTF-8?q?fix:=20CORS=20exposed=20headers=EC=97=90=20Cont?=
 =?UTF-8?q?ent-Type=20=EC=B6=94=EA=B0=80=20(#493)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/main/java/gg/agit/konect/global/config/WebConfig.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main/java/gg/agit/konect/global/config/WebConfig.java b/src/main/java/gg/agit/konect/global/config/WebConfig.java
index 42d6ba717..16ed537e0 100644
--- a/src/main/java/gg/agit/konect/global/config/WebConfig.java
+++ b/src/main/java/gg/agit/konect/global/config/WebConfig.java
@@ -31,7 +31,7 @@ public void addCorsMappings(CorsRegistry registry) {
             .allowedOrigins(corsProperties.allowedOrigins().toArray(new String[0]))
             .allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS", "PATCH")
             .allowedHeaders("*")
-            .exposedHeaders("Authorization")
+            .exposedHeaders("Authorization", "Content-Type", "Cache-Control")
             .allowCredentials(true)
             .maxAge(CORS_PREFLIGHT_MAX_AGE_SECONDS);
     }