[ENG-3583] Respect cors_allowed_origins for backend HTTP requests

2024-12-12 11:46:04 -08:00 · 2024-12-12 11:46:04 -08:00 · 6f8f9d5d43
commit 6f8f9d5d43
parent 2d9849e00a
1 changed files with 1 additions and 1 deletions
--- a/reflex/app.py
+++ b/reflex/app.py
@ -436,7 +436,7 @@ class App(MiddlewareMixin, LifespanMixin):
            allow_credentials=True,
            allow_methods=["*"],
            allow_headers=["*"],
-            allow_origins=["*"],
+            allow_origins=get_config().cors_allowed_origins,
        )
    @property