cors tweaks

Author: retailcoder

rubberduckvba.Server/Api/Admin/AdminController.cs

@@ -46,6 +46,7 @@ public IActionResult ClearCache()
     }
 
 #if DEBUG
+    [EnableCors("CorsPolicy")]
     [HttpGet("admin/config/current")]
     public IActionResult Config()
     {

rubberduckvba.Server/Api/Auth/AuthController.cs

@@ -37,6 +37,7 @@ public AuthController(IOptions<GitHubSettings> configuration, IOptions<ApiSettin
     }
 
     [HttpGet("auth")]
+    [EnableCors("CorsPolicy")]
     [AllowAnonymous]
     public IActionResult Index()
     {

rubberduckvba.Server/Program.cs

@@ -51,7 +51,6 @@ public static void Main(string[] args)
             {
                 policy
                     .SetIsOriginAllowed(origin => true)
-                    .AllowAnyOrigin()
                     .AllowAnyHeader()
                     .WithMethods("OPTIONS", "GET", "POST")
                     .AllowCredentials()