Fix: Add CORS again, but allow all origins

bacongubbe · bacongubbe · commit cd89b24746f1 · 2023-09-11T22:09:09.000+02:00
diff --git a/src/main/kotlin/com/salt/developerjokes/api/JokeController.kt b/src/main/kotlin/com/salt/developerjokes/api/JokeController.kt
@@ -11,6 +11,7 @@ import java.net.URI
 
 @RestController
 @RequestMapping("/api/jokes")
+@CrossOrigin(origins = ["*"])
 class JokeController(@Autowired val service: JokeService) {
 
   @GetMapping
diff --git a/src/main/kotlin/com/salt/developerjokes/api/SecurityConfig.kt b/src/main/kotlin/com/salt/developerjokes/api/SecurityConfig.kt
@@ -29,7 +29,6 @@ class SecurityConfig {
   @Bean
   fun defaultSecurityFilterChain(http: HttpSecurity): SecurityFilterChain {
     return http.csrf().disable()
-      .cors().disable()
       .authorizeHttpRequests()
       .requestMatchers("/login").permitAll()
       .requestMatchers(HttpMethod.HEAD, "/**").permitAll()
