Added allowed header "Authorization" to api cors

freezippo · Mar 20, 2017 · c35fde9 · c35fde9
1 parent f64107f
commit c35fde9
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/api/api.go b/src/api/api.go
@@ -43,7 +43,7 @@ func Start(cfg config.ApiConfig) {
 		corsConfig.AllowAllOrigins = true
 		corsConfig.AllowCredentials = true
 		corsConfig.AllowMethods = []string{"PUT", "POST", "DELETE", "GET", "OPTIONS"}
-		corsConfig.ExposeHeaders = []string{"Authorization"}
+		corsConfig.AllowHeaders = []string{"Origin", "Authorization"}
 
 		app.Use(cors.New(corsConfig))
 		log.Info("API CORS enabled")