diff --git a/src/middleware.js b/src/middleware.js
index 8faf51d..f696779 100644
--- a/src/middleware.js
+++ b/src/middleware.js
@@ -18,12 +18,11 @@ export function middleware(request) {
   // retrieve the current response
   const res = NextResponse.next()
 
-  console.log('middleware cors', request)
-  console.log('headers', request.headers)
+  console.log('middleware cors', request.headers.get('origin'))
 
   // add the CORS headers to the response
   res.headers.append('Access-Control-Allow-Credentials', "true")
-  res.headers.append('Access-Control-Allow-Origin', '*') // replace this your actual origin
+  res.headers.append('Access-Control-Allow-Origin', request.headers.get('origin')) // replace this your actual origin
   res.headers.append('Access-Control-Allow-Methods', 'GET,DELETE,PATCH,POST,PUT')
   res.headers.append(
       'Access-Control-Allow-Headers',