From 2fbd31f5e0a602912cce1dbd1a38fe9be229b59b Mon Sep 17 00:00:00 2001 From: Matthias Date: Wed, 20 May 2020 07:01:14 +0200 Subject: [PATCH] CORS - allow authenticated responses --- freqtrade/rpc/api_server.py | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/freqtrade/rpc/api_server.py b/freqtrade/rpc/api_server.py index 61eacf639..debd91fe7 100644 --- a/freqtrade/rpc/api_server.py +++ b/freqtrade/rpc/api_server.py @@ -89,7 +89,9 @@ class ApiServer(RPC): self._config = freqtrade.config self.app = Flask(__name__) - self._cors = CORS(self.app, resources={r"/api/*": {"origins": "*"}}) + self._cors = CORS(self.app, + resources={r"/api/*": {"origins": "*", "supports_credentials": True}}, + ) # Setup the Flask-JWT-Extended extension self.app.config['JWT_SECRET_KEY'] = self._config['api_server'].get(