From 49c0f932ab3e5705380a57cefa8da9ea7b9967d3 Mon Sep 17 00:00:00 2001
From: retoor <retoor@molodetz.nl>
Date: Sun, 9 Feb 2025 23:49:54 +0100
Subject: [PATCH] Updated cors.

---
 src/snek/system/middleware.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/snek/system/middleware.py b/src/snek/system/middleware.py
index 69fe378..2946262 100644
--- a/src/snek/system/middleware.py
+++ b/src/snek/system/middleware.py
@@ -22,6 +22,7 @@ async def cors_allow_middleware(request, handler):
     response.headers["Access-Control-Allow-Origin"] = "*"
     response.headers["Access-Control-Allow-Methods"] = "GET, POST, OPTIONS, PUT, DELETE"
     response.headers["Access-Control-Allow-Headers"] = "*"
+    response.headers["Access-Control-Allow-Credentials"] = "true"
     return response
 
 
@@ -34,10 +35,12 @@ async def cors_middleware(request, handler):
             "GET, POST, PUT, DELETE, OPTIONS"
         )
         response.headers["Access-Control-Allow-Headers"] = "*"
+        response.headers["Access-Control-Allow-Credentials"] = "true"
         return response
 
     response = await handler(request)
     response.headers["Access-Control-Allow-Origin"] = "*"
     response.headers["Access-Control-Allow-Methods"] = "GET, POST, PUT, DELETE, OPTIONS"
     response.headers["Access-Control-Allow-Headers"] = "*"
+    response.headers["Access-Control-Allow-Credentials"] = "true"
     return response