AllowCredentials for CORS policy

2025-12-20 10:13:39 +00:00 · 2017-12-04 15:11:33 -05:00
parent 8ac284f1ec
commit 51534f159c
1 changed files with 3 additions and 2 deletions
--- a/src/Api/Startup.cs
+++ b/src/Api/Startup.cs
@@ -125,8 +125,9 @@ namespace Bit.Api
            // Cors
            services.AddCors(config =>
            {
-                config.AddPolicy("All", policy =>
-                    policy.AllowAnyHeader().AllowAnyMethod().AllowAnyOrigin().SetPreflightMaxAge(TimeSpan.FromDays(1)));
+                config.AddPolicy("All", policy => policy
+                    .AllowAnyHeader().AllowAnyMethod().AllowAnyOrigin().AllowCredentials()
+                    .SetPreflightMaxAge(TimeSpan.FromDays(1)));
            });

            // MVC