From d425f80056fc9478a106df765107848abda82f95 Mon Sep 17 00:00:00 2001
From: zhangchenbiao <chenbiao.zhang@coolcollege.cn>
Date: Wed, 21 Jun 2023 18:05:31 +0800
Subject: [PATCH] cors

---
 .../src/main/java/com/cool/store/config/CorsFilter.java         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/coolstore-partner-webc/src/main/java/com/cool/store/config/CorsFilter.java b/coolstore-partner-webc/src/main/java/com/cool/store/config/CorsFilter.java
index ef47ab99a..869d32219 100644
--- a/coolstore-partner-webc/src/main/java/com/cool/store/config/CorsFilter.java
+++ b/coolstore-partner-webc/src/main/java/com/cool/store/config/CorsFilter.java
@@ -27,7 +27,7 @@ public class CorsFilter implements Filter {
         response.setHeader("Access-Control-Allow-Credentials", "true");
         response.setHeader("Access-Control-Allow-Methods", "POST, OPTIONS, GET, DELETE, PUT");
         response.setHeader("Access-Control-Max-Age", "36000");
-        response.setHeader("Access-Control-Allow-Headers", "x-requested-with, Origin, Authorization, content-type, XMLHttpRequest, Authorization, User-Agent, Cookie");
+        response.setHeader("Access-Control-Allow-Headers", "x-requested-with, Origin, Authorization, content-type, XMLHttpRequest, Authorization, User-Agent, Cookie Nonce Openid Phone Sign Timestamp");
         if (reqs.getMethod().equals("OPTIONS") || reqs.getMethod().equals("HEAD")) {
             response.setStatus(HttpStatus.HTTP_OK);
             return;