Allow all with CORS.

katsumag · katsumag · commit d0e138f34057 · 2024-10-10T21:43:37.000+01:00
Just want to see any kind of CORS header
diff --git a/core/src/main/kotlin/net/osable/core/SecurityConfiguration.kt b/core/src/main/kotlin/net/osable/core/SecurityConfiguration.kt
@@ -13,6 +13,8 @@ import org.springframework.security.web.authentication.SimpleUrlAuthenticationFa
 import org.springframework.security.web.authentication.SimpleUrlAuthenticationSuccessHandler
 import org.springframework.security.web.csrf.CookieCsrfTokenRepository
 import org.springframework.web.bind.annotation.RestController
+import org.springframework.web.cors.CorsConfiguration
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource
 
 @Configuration
 class SecurityConfiguration {
@@ -43,6 +45,10 @@ class SecurityConfiguration {
             accessDeniedException.printStackTrace()
         }
 
+        http.cors().configurationSource {
+            CorsConfiguration().applyPermitDefaultValues()
+        }
+
         return http.build()
     }
 
