From 3039a32f292944cba879ebada57e16e5fb14d97a Mon Sep 17 00:00:00 2001
From: Azalea <22280294+hykilpikonna@users.noreply.github.com>
Date: Mon, 19 Feb 2024 04:51:01 -0500
Subject: [PATCH] [F] Fix CORS

---
 .../java/icu/samnyan/aqua/spring/SecurityConfig.kt | 14 +++++++++++++-
 1 file changed, 13 insertions(+), 1 deletion(-)

diff --git a/src/main/java/icu/samnyan/aqua/spring/SecurityConfig.kt b/src/main/java/icu/samnyan/aqua/spring/SecurityConfig.kt
index f5aaa776..537b7dd8 100644
--- a/src/main/java/icu/samnyan/aqua/spring/SecurityConfig.kt
+++ b/src/main/java/icu/samnyan/aqua/spring/SecurityConfig.kt
@@ -6,10 +6,22 @@ import org.springframework.security.config.Customizer
 import org.springframework.security.config.annotation.web.builders.HttpSecurity
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity
 import org.springframework.security.web.SecurityFilterChain
+import org.springframework.web.cors.CorsConfiguration
+import org.springframework.web.cors.UrlBasedCorsConfigurationSource
+
 
 @Configuration
 @EnableWebSecurity
-class SecurityConfig() {
+class SecurityConfig {
+    @Bean
+    fun corsConfigurationSource() = UrlBasedCorsConfigurationSource().apply {
+        registerCorsConfiguration("/api/**", CorsConfiguration().apply {
+            allowedOrigins = listOf("*")
+            allowedMethods = listOf("GET", "POST", "PUT", "DELETE", "OPTIONS")
+            allowedHeaders = listOf("*")
+        })
+    }
+
     @Bean
     fun configure(http: HttpSecurity): SecurityFilterChain = http
         .headers { it.disable() }