fix: cors allows any method for known origins

2025-12-16 11:00:06 +01:00 · 2025-07-21 11:15:05 +02:00
parent d99755e7af
commit ddfab4dac1
1 changed files with 3 additions and 1 deletions
--- a/Program.cs
+++ b/Program.cs
@@ -33,7 +33,9 @@ builder.Services.AddCors(options =>
        {
            policy
            .WithOrigins(CorsOrigins.ToArray())
-            .AllowAnyHeader(); // this might not be the greatest idea
+            // this might not be the greatest idea:
+            .AllowAnyHeader()
+            .AllowAnyMethod();
        });
 });