2056: Allow any header for CORS r=curquiza a=curquiza

Bug fix: trigger a CORS error when trying to send the `User-Agent` header via the browser

`@bidoubiwa` thanks for the bug report!

Co-authored-by: Clémentine Urquizar <clementine@meilisearch.com>
This commit is contained in:
bors[bot] 2022-01-05 16:45:51 +00:00 committed by GitHub
commit 0d2a358cc2
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -143,7 +143,7 @@ macro_rules! create_app {
.wrap(
Cors::default()
.send_wildcard()
.allowed_headers(vec!["content-type", "Authorization"])
.allow_any_header()
.allow_any_origin()
.allow_any_method()
.max_age(86_400), // 24h