diff --git a/src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java b/src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java
index 5d667d82..a0460eb7 100644
--- a/src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java
+++ b/src/main/java/org/tuna/zoopzoop/backend/global/security/SecurityConfig.java
@@ -8,6 +8,8 @@
 import org.springframework.security.oauth2.client.registration.ClientRegistrationRepository;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
+import org.springframework.web.servlet.config.annotation.CorsRegistry;
+import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
 import org.tuna.zoopzoop.backend.domain.auth.global.CustomOAuth2AuthorizationRequestResolver;
 import org.tuna.zoopzoop.backend.domain.auth.handler.OAuth2SuccessHandler;
 import org.tuna.zoopzoop.backend.domain.auth.service.CustomOAuth2UserService;
@@ -75,4 +77,15 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
 
         return http.build();
     }
+
+    @Configuration
+    public class WebConfig implements WebMvcConfigurer {
+        @Override
+        public void addCorsMappings(CorsRegistry registry) {
+            registry.addMapping("/api/v1/**")
+                    .allowedOrigins("*") // 실제 배포시엔 chrome-extension://<EXTENSION_ID> 로 제한 권장
+                    .allowedMethods("GET", "POST", "PUT", "DELETE", "OPTIONS")
+                    .allowedHeaders("*");
+        }
+    }
 }
\ No newline at end of file