From 875576ef2deb5c56bb061be29ba41a3b261dd482 Mon Sep 17 00:00:00 2001
From: Andreas Dinauer <andreas.j.dinauer@gmail.com>
Date: Sun, 22 Mar 2026 11:45:52 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=90=9B=20Remove=20origin=20from=20=20requ?=
 =?UTF-8?q?est=20headers?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 server/routes/api/[...path].ts | 12 +++---------
 1 file changed, 3 insertions(+), 9 deletions(-)

diff --git a/server/routes/api/[...path].ts b/server/routes/api/[...path].ts
index 30d859a..46aeb2b 100644
--- a/server/routes/api/[...path].ts
+++ b/server/routes/api/[...path].ts
@@ -1,10 +1,6 @@
 import type {H3Event} from "h3";
 
 export default defineEventHandler(async (event) => {
-    handleCors(event, {
-        origin: '*',
-        methods: '*'
-    });
     const user = process.env.NUXT_PRIVATE_SUPERUSER_USER;
     const password = process.env.NUXT_PRIVATE_SUPERUSER_PASSWORD;
     if (user == null || password == null)
@@ -13,13 +9,11 @@ export default defineEventHandler(async (event) => {
         throw Error();
     }
 
+    const credentials: string = "Basic " + Buffer.from(user + ':' + password).toString('base64');
+
     event.headers.delete("host");
     event.headers.delete("origin");
-    event.headers.set("authorization", "Basic " + Buffer.from(user + ':' + password).toString('base64'))
-
-    console.log(event.headers);
-
-    console.log(process.env.NUXT_PUBLIC_BASE_URL);
+    event.headers.set("authorization", credentials)
 
     return sendProxy(event, process.env.NUXT_PUBLIC_BASE_URL + event.path, {
         fetchOptions: {