From 58505e79a0b39addf4d4102c0849733b27869ee1 Mon Sep 17 00:00:00 2001 From: IT Fixcomart Date: Tue, 1 Nov 2022 15:02:24 +0700 Subject: delete cors --- indoteknik_api/controllers/api_v1/product.py | 2 +- indoteknik_api/controllers/controller.py | 6 +----- 2 files changed, 2 insertions(+), 6 deletions(-) diff --git a/indoteknik_api/controllers/api_v1/product.py b/indoteknik_api/controllers/api_v1/product.py index 975c81c6..d8006873 100644 --- a/indoteknik_api/controllers/api_v1/product.py +++ b/indoteknik_api/controllers/api_v1/product.py @@ -84,7 +84,7 @@ class Product(controller.Controller): return self.response(data) - @http.route(prefix + 'product//similar', auth='public', methods=['GET', 'OPTIONS'], cors='*') + @http.route(prefix + 'product//similar', auth='public', methods=['GET']) def get_product_similar_by_id(self, **kw): if not self.authenticate(): return self.response(code=401, description='Unauthorized') diff --git a/indoteknik_api/controllers/controller.py b/indoteknik_api/controllers/controller.py index 3d3ce951..c02f6b60 100644 --- a/indoteknik_api/controllers/controller.py +++ b/indoteknik_api/controllers/controller.py @@ -50,11 +50,7 @@ class Controller(http.Controller): response.update({'result': data}) response = json.dumps(response) - return request.make_response(response, [ - ('Access-Control-Allow-Headers', 'Origin, X-Requested-With, Content-Type, Accept, Authorization, db, password, username'), - ('Access-Control-Allow-Origin', '*'), - ('Content-Type', 'application/json') - ]) + return request.make_response(response, [('Content-Type', 'application/json')]) def search_filter(self, model: str, kw: dict, query: array = []): """ To search data by default API Params if exist """ -- cgit v1.2.3