@jeffalo pls allow any origin to use the api (cors)
Why, you can already access it several ways
security issue
In what way
if you’re logged in a malicious site could post as you for example
You still send auth with requests lil
@jeffalo pls help me to explain