diff --git a/default.conf b/default.conf index bd4ad26..deff7fa 100644 --- a/default.conf +++ b/default.conf @@ -123,14 +123,15 @@ server { if ($request_method = OPTIONS) { add_header Access-Control-Allow-Origin $http_origin always; add_header Access-Control-Allow-Credentials true always; - add_header Access-Control-Allow-Headers content-type,authorization always; - add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE; + add_header Access-Control-Allow-Headers content-type always; + add_header Access-Control-Allow-Methods GET; + return 200; } add_header Access-Control-Allow-Origin $http_origin always; add_header Access-Control-Allow-Credentials true always; - add_header Access-Control-Allow-Headers content-type,authorization always; - add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE; + add_header Access-Control-Allow-Headers content-type always; + add_header Access-Control-Allow-Methods GET; chunked_transfer_encoding off; proxy_buffering off; proxy_cache off; @@ -140,14 +141,14 @@ server { if ($request_method = OPTIONS) { add_header Access-Control-Allow-Origin $http_origin always; add_header Access-Control-Allow-Credentials true always; - add_header Access-Control-Allow-Headers content-type always; - add_header Access-Control-Allow-Methods GET; + add_header Access-Control-Allow-Headers content-type,authorization always; + add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE; return 200; } add_header Access-Control-Allow-Origin $http_origin always; add_header Access-Control-Allow-Credentials true always; - add_header Access-Control-Allow-Headers content-type always; - add_header Access-Control-Allow-Methods GET; + add_header Access-Control-Allow-Headers content-type,authorization always; + add_header Access-Control-Allow-Methods OPTIONS,GET,POST,PATCH,PUT,DELETE; proxy_set_header Referer $host; proxy_set_header Origin $http_origin; proxy_set_header Connection '';