From 30841bbc40423650f030ba7982c54afee99a83c4 Mon Sep 17 00:00:00 2001
From: Hknots <hknots99@gmail.com>
Date: Fri, 5 Jul 2024 14:29:30 +0200
Subject: [PATCH] cors is now enabled

---
 src/main/java/no/fint/portal/ApplicationSecurity.java | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/main/java/no/fint/portal/ApplicationSecurity.java b/src/main/java/no/fint/portal/ApplicationSecurity.java
index cdd879c..95fe017 100644
--- a/src/main/java/no/fint/portal/ApplicationSecurity.java
+++ b/src/main/java/no/fint/portal/ApplicationSecurity.java
@@ -51,6 +51,7 @@ public AccessDecisionManager accessDecisionManager() {
     public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
         http
                 .csrf(AbstractHttpConfigurer::disable)
+                .cors().and()
                 .sessionManagement(AbstractHttpConfigurer::disable)
                 .addFilter(requestHeaderAuthenticationFilter(preAuthenticatedAuthenticationProvider()))
                 .authenticationProvider(preAuthenticatedAuthenticationProvider())