diff --git a/nginx/sites-available/cloud.grupopralog.com.br.conf b/nginx/sites-available/cloud.grupopralog.com.br.conf index e145a83..20b4bb7 100644 --- a/nginx/sites-available/cloud.grupopralog.com.br.conf +++ b/nginx/sites-available/cloud.grupopralog.com.br.conf @@ -109,11 +109,16 @@ server { #sub_filter_types text/css text/javascript application/javascript application/json; if ($request_method = 'OPTIONS') { - more_set_headers 'Access-Control-Allow-Origin: "$scheme://$http_host"'; - more_set_headers 'Access-Control-Allow-Methods: GET, POST, OPTIONS, HEAD'; - more_set_headers 'Access-Control-Allow-Headers: Authorization, Content-Type, Accept, Origin, User-Agent, DNT, Cache-Control, X-Mx-ReqToken, Keep-Alive, X-Requested-With, If-Modified-Since, X-UserType'; - more_set_headers 'Access-Control-Allow-Credentials: true' always; - more_set_headers 'Access-Control-Max-Age: 1728000' always; + #more_set_headers 'Access-Control-Allow-Origin: "$scheme://$http_host"'; + #more_set_headers 'Access-Control-Allow-Methods: GET, POST, OPTIONS, HEAD'; + #more_set_headers 'Access-Control-Allow-Headers: Authorization, Content-Type, Accept, Origin, User-Agent, DNT, Cache-Control, X-Mx-ReqToken, Keep-Alive, X-Requested-With, If-Modified-Since, X-UserType'; + #more_set_headers 'Access-Control-Allow-Credentials: true' always; + #more_set_headers 'Access-Control-Max-Age: 1728000' always; + add_header 'Access-Control-Allow-Origin' "$scheme://$http_host" always; + add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS, HEAD' always; + add_header 'Access-Control-Allow-Headers' 'Authorization, Content-Type, Accept, Origin, User-Agent, DNT, Cache-Control, X-Mx-ReqToken, Keep-Alive, X-Requested-With, If-Modified-Since, X-UserType' always; + add_header 'Access-Control-Allow-Credentials' 'true' always; + add_header 'Access-Control-Max-Age' '1728000' always; return 204; }