diff --git a/src/main/java/com/workingdead/config/CorsConfig.java b/src/main/java/com/workingdead/config/CorsConfig.java
index 5e6556d..845a1da 100644
--- a/src/main/java/com/workingdead/config/CorsConfig.java
+++ b/src/main/java/com/workingdead/config/CorsConfig.java
@@ -18,8 +18,7 @@ public CorsConfigurationSource corsConfigurationSource() {
                 "http://10.0.2.2:8080",
                 "http://localhost:5173",
                 "http://whend.app",
-                "https://whend.app",
-                "https://whendy.netlify.app"
+                "https://whend.app"
         ));
         config.setAllowedMethods(List.of("GET","POST","PUT","PATCH","DELETE","OPTIONS"));
         config.setAllowedHeaders(List.of("*"));
diff --git a/src/main/java/com/workingdead/config/SecurityConfig.java b/src/main/java/com/workingdead/config/SecurityConfig.java
index e3d49fe..559e7de 100644
--- a/src/main/java/com/workingdead/config/SecurityConfig.java
+++ b/src/main/java/com/workingdead/config/SecurityConfig.java
@@ -5,16 +5,14 @@
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.web.SecurityFilterChain;
-import org.springframework.web.cors.CorsConfigurationSource;
 
 @Configuration
 @EnableWebSecurity
 public class SecurityConfig {
 
     @Bean
-    public SecurityFilterChain filterChain(HttpSecurity http, CorsConfigurationSource corsConfigurationSource) throws Exception {
+    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         http
-                .cors(cors -> cors.configurationSource(corsConfigurationSource))
                 .csrf(csrf -> csrf.disable())
                 .formLogin(form -> form.disable())  // 기본 로그인 폼 비활성화
                 .httpBasic(basic -> basic.disable()) // 브라우저 팝업 로그인 비활성화