From 3d13c85ef615a88a6bdce454904bf0a3cda08690 Mon Sep 17 00:00:00 2001
From: IT Fixcomart <it@fixcomart.co.id>
Date: Wed, 21 Dec 2022 16:52:43 +0700
Subject: update user cors

---
 indoteknik_api/controllers/api_v1/user.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/indoteknik_api/controllers/api_v1/user.py b/indoteknik_api/controllers/api_v1/user.py
index 31ec8a96..46ac82ae 100644
--- a/indoteknik_api/controllers/api_v1/user.py
+++ b/indoteknik_api/controllers/api_v1/user.py
@@ -113,7 +113,7 @@ class Auth(controller.Controller):
             'token': user.activation_token,
         })
     
-    @http.route(prefix + 'user/<id>', auth='public', methods=['PUT'], csrf=False)
+    @http.route(prefix + 'user/<id>', auth='public', methods=['PUT', 'OPTIONS'], csrf=False)
     def update_user(self, **kw):
         if not self.authenticate():
             return self.response(code=401, description='Unauthorized')
@@ -131,7 +131,7 @@ class Auth(controller.Controller):
         if not is_verify:
             return self.response(code=401, description='Unauthorized')
         
-        allowed_field = ['name', 'email', 'phone', 'mobile', 'password']
+        allowed_field = ['name', 'phone', 'mobile', 'password']
         for field in allowed_field:
             field_value = kw.get(field)
             if field_value:
-- 
cgit v1.2.3