Allow Authorization header in CORS config

2024-03-19 14:51:09 +03:00
parent df5e5cb193
commit 6547e1e79f
1 changed files with 5 additions and 1 deletions
--- a/src/index.js
+++ b/src/index.js
@@ -44,7 +44,11 @@ if (corsOrigin.includes('*')) {
  corsOrigin = '*';
 }

-const corsOptions = { origin: corsOrigin };
+const corsOptions = {
+  origin: corsOrigin,
+  credentials: true,
+  allowedHeaders: ['Content-Type', 'Authorization'],
+};

 app.use(cors(corsOptions));