Mode production: autorisation de toutes les requêtes CORS

collection/collection/environments/production.py

@@ -15,5 +15,8 @@ ALLOWED_HOSTS = [os.getenv('ALLOWED_HOSTS', '*')]
 #   `proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;`
 USE_X_FORWARDED_HOST = True
 
-# CORS: as we only need to acces API, a regular expression is enough
+# CORS: allow all site to make cross site requests                  
+CORS_ORIGIN_ALLOW_ALL = True                                        
+                                                                    
+# CORS: limit to API only
 CORS_URLS_REGEX = r'^/api/.*$'