diff --git a/api-module/src/main/java/com/likelion/apimodule/security/config/SecurityConfig.java b/api-module/src/main/java/com/likelion/apimodule/security/config/SecurityConfig.java
index 1a9c257..939eb75 100644
--- a/api-module/src/main/java/com/likelion/apimodule/security/config/SecurityConfig.java
+++ b/api-module/src/main/java/com/likelion/apimodule/security/config/SecurityConfig.java
@@ -42,8 +42,7 @@ public BCryptPasswordEncoder bCryptPasswordEncoder() {
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
 
         http
-                .cors(cors -> cors
-                        .configurationSource(CorsConfig.apiConfigurationSource()));
+                .cors(AbstractHttpConfigurer::disable);
 
         // csrf disable
         http
diff --git a/common-module/src/main/java/com/likelion/commonmodule/security/config/CorsConfig.java b/common-module/src/main/java/com/likelion/commonmodule/security/config/CorsConfig.java
index 49a9abc..8f228aa 100644
--- a/common-module/src/main/java/com/likelion/commonmodule/security/config/CorsConfig.java
+++ b/common-module/src/main/java/com/likelion/commonmodule/security/config/CorsConfig.java
@@ -17,7 +17,9 @@ public static CorsConfigurationSource apiConfigurationSource() {
 
         ArrayList<String> allowedOriginPatterns = new ArrayList<>();
         allowedOriginPatterns.add("http://localhost:8080");
+        allowedOriginPatterns.add("https://localhost:8080");
         allowedOriginPatterns.add("http://localhost:3000");
+        allowedOriginPatterns.add("https://localhost:3000");
         allowedOriginPatterns.add("https://syluv.link");
 
         ArrayList<String> allowedHttpMethods = new ArrayList<>();