Add CORS headers to server configuration

Extended the CORS configuration to include allowed headers. This change ensures that "Origin", "Content-Type", and "Authorization" headers are explicitly permitted in cross-origin requests. This will enhance compatibility with client-side applications requiring these headers.
mukulmantosh · Aug 25, 2024 · 4d99f39 · 4d99f39
1 parent c50dbfc
commit 4d99f39
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/pkg/handler/server.go b/pkg/handler/server.go
@@ -23,9 +23,9 @@ func NewServer(db database.Database) *Server {
 
 	// CORS configuration
 	corsConfig := cors.Config{
-		AllowOrigins: []string{"*"},                            // List of allowed origins
-		AllowMethods: []string{"GET", "POST", "PUT", "DELETE"}, // List of allowed methods
-
+		AllowOrigins:     []string{"*"},                                       // List of allowed origins
+		AllowMethods:     []string{"GET", "POST", "PUT", "DELETE"},            // List of allowed methods
+		AllowHeaders:     []string{"Origin", "Content-Type", "Authorization"}, // Allow the necessary headers
 		AllowCredentials: true,
 	}