Added CORSMiddleware

apps/utils/middleware.py

@@ -32,3 +32,13 @@ def parse_cookies(get_response):
         return response
     return middleware
 
+
+class CORSMiddleware:
+    """Added parameter {Access-Control-Allow-Origin: *} to response"""
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+        response = self.get_response(request)
+        response["Access-Control-Allow-Origin"] = '*'
+        return response

project/settings/base.py

@@ -79,7 +79,6 @@ EXTERNAL_APPS = [
     'rest_framework',
     'rest_framework.authtoken',
     'easy_select2',
-    'corsheaders',
     'oauth2_provider',
     'social_django',
     'rest_framework_social_oauth2',
@@ -98,13 +97,13 @@ MIDDLEWARE = [
     'django.contrib.sessions.middleware.SessionMiddleware',
     'django.middleware.locale.LocaleMiddleware',
     'oauth2_provider.middleware.OAuth2TokenMiddleware',
-    'corsheaders.middleware.CorsMiddleware',
     'django.middleware.common.CommonMiddleware',
     'django.middleware.csrf.CsrfViewMiddleware',
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
     'utils.middleware.parse_cookies',
+    'utils.middleware.CORSMiddleware',
 ]
 
 ROOT_URLCONF = 'project.urls'
@@ -333,10 +332,6 @@ THUMBNAIL_ALIASES = {
 # Password reset
 RESETTING_TOKEN_EXPIRATION = 24  # hours
 
-# CORS Config
-CORS_ORIGIN_ALLOW_ALL = True
-CORS_ALLOW_CREDENTIALS = True
-
 
 GEOIP_PATH = os.path.join(PROJECT_ROOT, 'geoip_db')