Cookies are not necessary, disabled credentials

2015-03-07 15:59:01 -03:00 · 2015-03-07 15:59:01 -03:00 · b052328ad8
parent 6abddcc3af
commit b052328ad8
1 changed files with 1 additions and 2 deletions
--- a/lib/expressapp.js
+++ b/lib/expressapp.js
@ -27,8 +27,7 @@ ExpressApp.start = function(opts) {
  WalletService.initialize(opts.WalletService);
  var app = express();
  app.use(function(req, res, next) {
-    res.setHeader('Access-Control-Allow-Origin', req.headers.origin);
-    res.setHeader('Access-Control-Allow-Credentials', 'true');
+    res.setHeader('Access-Control-Allow-Origin', '*');
    res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS, PUT, DELETE');
    res.setHeader('Access-Control-Allow-Headers', 'x-signature,x-identity,X-Requested-With,Content-Type,Authorization');
    next();