From 3ea4f9ac8deea09711c80e3ef2cce8d02c64f2ee Mon Sep 17 00:00:00 2001
From: Hakaba Hitoyo <hakabahitoyo@yahoo.co.jp>
Date: Mon, 5 Nov 2018 04:18:43 +0000
Subject: [PATCH] Remove Access-Control-Allow-Origin

---
 installation/pleroma.nginx | 1 -
 1 file changed, 1 deletion(-)

diff --git a/installation/pleroma.nginx b/installation/pleroma.nginx
index f648336ca..f86239672 100644
--- a/installation/pleroma.nginx
+++ b/installation/pleroma.nginx
@@ -62,7 +62,6 @@ server {
     location / {
         # if you do not want remote frontends to be able to access your Pleroma backend
         # server, remove these lines.
-        add_header 'Access-Control-Allow-Origin' '*' always;
         add_header 'Access-Control-Allow-Methods' 'POST, PUT, DELETE, GET, PATCH, OPTIONS' always;
         add_header 'Access-Control-Allow-Headers' 'Authorization, Content-Type, Idempotency-Key' always;
         add_header 'Access-Control-Expose-Headers' 'Link, X-RateLimit-Reset, X-RateLimit-Limit, X-RateLimit-Remaining, X-Request-Id' always;