foodsoft/config/initializers/cors.rb

15 lines
553 B
Ruby
Raw Permalink Normal View History

2023-01-06 16:12:41 +01:00
# Be sure to restart your server when you modify this file.
# Avoid CORS issues when API is called from the frontend app.
# Handle Cross-Origin Resource Sharing (CORS) in order to accept cross-origin AJAX requests.
# Read more: https://github.com/cyu/rack-cors
2023-06-08 17:45:22 +02:00
Rails.application.config.middleware.insert_before 0, Rack::Cors do
allow do
origins '*'
# this restricts Foodsoft scopes to certain characters - let's discuss it when it becomes an actual problem
resource %r{\A/[-a-zA-Z0-9_]+/api/v1/}, headers: :any, methods: :any
end
end