diff --git a/src/main/java/com/example/team4backend/config/SecurityConfig.java b/src/main/java/com/example/team4backend/config/SecurityConfig.java
index 874c045..c3a0fe9 100644
--- a/src/main/java/com/example/team4backend/config/SecurityConfig.java
+++ b/src/main/java/com/example/team4backend/config/SecurityConfig.java
@@ -33,19 +33,20 @@ public class SecurityConfig {
 
     @Bean
     public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Exception {
-        CookieCsrfTokenRepository csrfTokenRepository =
-                CookieCsrfTokenRepository.withHttpOnlyFalse();
-        csrfTokenRepository.setCookiePath("/");
-        CsrfTokenRequestAttributeHandler requestHandler = new CsrfTokenRequestAttributeHandler();
-        requestHandler.setCsrfRequestAttributeName(null);
+//        CookieCsrfTokenRepository csrfTokenRepository =
+//                CookieCsrfTokenRepository.withHttpOnlyFalse();
+//        csrfTokenRepository.setCookiePath("/");
+//        CsrfTokenRequestAttributeHandler requestHandler = new CsrfTokenRequestAttributeHandler();
+        //requestHandler.setCsrfRequestAttributeName(null);
 
         http
                 .cors(cors -> cors.configurationSource(corsConfigurationSource))
-                .csrf(csrf -> csrf
-                        .csrfTokenRepository(csrfTokenRepository)
-                        .csrfTokenRequestHandler(requestHandler)
-                        .ignoringRequestMatchers(CSRF_IGNORED)
-                )
+//                .csrf(csrf -> csrf
+//                        .csrfTokenRepository(csrfTokenRepository)
+//                        .csrfTokenRequestHandler(requestHandler)
+//                        .ignoringRequestMatchers(CSRF_IGNORED)
+//                )
+                .csrf(AbstractHttpConfigurer::disable)
                 .exceptionHandling(ex -> ex
                         .authenticationEntryPoint(customAuthenticationEntryPoint)
                         .accessDeniedHandler(customAccessDeniedHandler)