A modern programming language that makes developers happier.

kotlinlang

how come when I do a OPTIONS request to get whether CORS is enabled or not in the preflight request, it responds with a 403? currently, I have
```
	install(CORS) {
		method(<http://HttpMethod.Post|HttpMethod.Post>)
		allowCredentials = true
		anyHost()
	}```

add Options as a HttpMethod where you currently only have post

<@UCN2U3M60> still gives me a 403 :disappointed:

```install(CORS) {
                header(HttpHeaders.Authorization)
                methods.addAll(listOf(HttpMethod.Get, <http://HttpMethod.Post|HttpMethod.Post>, HttpMethod.Put, HttpMethod.Delete, HttpMethod.Options))
                host("retracted", subDomains = listOf("localhost"))
                host("rectracted", subDomains = listOf("localhost"))
                host(
                    host = "retracted",
                    subDomains = listOf("retracted"),
                    schemes = listOf("http", "https"))
                host(
                    host = "retracted",
                    subDomains = listOf("app"),
                    schemes = listOf("http", "https")
                )
                allowNonSimpleContentTypes = true
                allowCredentials = true
            }```

that's our CORS-snippet, is your somewhat similar? anyHost() would replace our host rules I guess

I guess it's pretty much the same except for some of those allow values haven't been updated. my cors is exactly as i sent except i just added the options method.