From 59fb7d7e6b0c6ee0be5a1f8dbb68f79dd94beb6f Mon Sep 17 00:00:00 2001
From: RemRem <remrem@github.com>
Date: Mon, 13 Nov 2023 16:10:56 +0100
Subject: [PATCH] add allowed headers CORS

---
 app/routes.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/routes.php b/app/routes.php
index 1a0f5ae..f855de5 100644
--- a/app/routes.php
+++ b/app/routes.php
@@ -6,7 +6,7 @@ require_once "database_con.php";
 require_once "token.php";
 
 header("Access-Control-Allow-Origin: *");
-header("Access-Control-Allow-Headers: *");
+header("Access-Control-Allow-Headers: X-Requested-With, Content-Type, Accept, Origin, Authorization");
 header("Access-Control-Allow-Methods: GET, POST, PUT, DELETE");
 header("Access-Control-Allow-Credentials: true");