From 0aa280462ce7dd31fbcdc3626a902b4b54f331f8 Mon Sep 17 00:00:00 2001 From: Efril Date: Sun, 26 Apr 2026 23:14:11 +0700 Subject: [PATCH] fix cors --- internal/middleware/cors.go | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/internal/middleware/cors.go b/internal/middleware/cors.go index 20e6835..e9b4196 100644 --- a/internal/middleware/cors.go +++ b/internal/middleware/cors.go @@ -6,7 +6,11 @@ import ( func CORS() gin.HandlerFunc { return func(c *gin.Context) { - c.Header("Access-Control-Allow-Origin", "*") + origin := c.Request.Header.Get("Origin") + if origin == "" { + origin = "*" + } + c.Header("Access-Control-Allow-Origin", origin) c.Header("Access-Control-Allow-Credentials", "true") c.Header("Access-Control-Allow-Headers", "Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With") c.Header("Access-Control-Allow-Methods", "POST, OPTIONS, GET, PUT, DELETE")