From e409abb265328b3644fb4cf63ba27b189ab222de Mon Sep 17 00:00:00 2001
From: Paulo Gustavo Veiga <pveiga@wisemapping.com>
Date: Sat, 17 Feb 2024 19:32:53 -0800
Subject: [PATCH] Add headers on CORS

---
 .../main/java/com/wisemapping/config/rest/WebConfig.java    | 6 ++++--
 wise-api/src/main/resources/application.yml                 | 2 +-
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/wise-api/src/main/java/com/wisemapping/config/rest/WebConfig.java b/wise-api/src/main/java/com/wisemapping/config/rest/WebConfig.java
index 923ec980..3951e213 100644
--- a/wise-api/src/main/java/com/wisemapping/config/rest/WebConfig.java
+++ b/wise-api/src/main/java/com/wisemapping/config/rest/WebConfig.java
@@ -17,8 +17,10 @@ public class WebConfig implements WebMvcConfigurer {
     public void addCorsMappings(@NotNull CorsRegistry registry) {
         if (!corsAllowedOrigins.isEmpty()) {
             registry.addMapping("/api/**")
-                    .allowedOrigins(corsAllowedOrigins).
-                    maxAge(3600);
+                    .exposedHeaders("*")
+                    .allowedHeaders("*")
+                    .allowedOrigins(corsAllowedOrigins)
+                    .maxAge(3600);
         }
     }
 }
\ No newline at end of file
diff --git a/wise-api/src/main/resources/application.yml b/wise-api/src/main/resources/application.yml
index d15a6f16..32d629d5 100644
--- a/wise-api/src/main/resources/application.yml
+++ b/wise-api/src/main/resources/application.yml
@@ -71,7 +71,7 @@ app:
   # Redirect to this url, this url must be configured in the google app {baseurl}/c/registration-google
   #security.oauth2.google.callbackUrl=<oauth callback url>
   security:
-    corsAllowedOrigins: https://dev.wisemapping.com
+#    corsAllowedOrigins: https://dev.wisemapping.com
     oauth2:
       google:
         confirmUrl: https://oauth2.googleapis.com/token