Remove Access-Control-Allow-Origin

2018-11-05 04:18:43 +00:00 · 2018-11-05 04:18:43 +00:00 · 3ea4f9ac8d
parent bd97b3614f
commit 3ea4f9ac8d
1 changed files with 0 additions and 1 deletions
--- a/installation/pleroma.nginx
+++ b/installation/pleroma.nginx
@ -62,7 +62,6 @@ server {
    location / {
        # if you do not want remote frontends to be able to access your Pleroma backend
        # server, remove these lines.
-        add_header 'Access-Control-Allow-Origin' '*' always;
        add_header 'Access-Control-Allow-Methods' 'POST, PUT, DELETE, GET, PATCH, OPTIONS' always;
        add_header 'Access-Control-Allow-Headers' 'Authorization, Content-Type, Idempotency-Key' always;
        add_header 'Access-Control-Expose-Headers' 'Link, X-RateLimit-Reset, X-RateLimit-Limit, X-RateLimit-Remaining, X-Request-Id' always;