From 0bec06cd45a7f6eda0d52f78dd5ff767d94ed5cc Mon Sep 17 00:00:00 2001
From: Taylor Otwell <taylorotwell@gmail.com>
Date: Fri, 27 Dec 2019 08:56:53 -0600
Subject: [PATCH] formatting

---
 app/Http/Kernel.php                |  2 +-
 app/Http/Middleware/HandleCors.php |  9 -------
 config/cors.php                    | 40 ++++++------------------------
 3 files changed, 8 insertions(+), 43 deletions(-)
 delete mode 100644 app/Http/Middleware/HandleCors.php

diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index b4737214aaf..c3640f30b87 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -15,7 +15,7 @@ class Kernel extends HttpKernel
      */
     protected $middleware = [
         \App\Http\Middleware\TrustProxies::class,
-        \App\Http\Middleware\HandleCors::class,
+        \Fruitcake\Cors\HandleCors::class,
         \App\Http\Middleware\CheckForMaintenanceMode::class,
         \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
         \App\Http\Middleware\TrimStrings::class,
diff --git a/app/Http/Middleware/HandleCors.php b/app/Http/Middleware/HandleCors.php
deleted file mode 100644
index e4d0cf60da5..00000000000
--- a/app/Http/Middleware/HandleCors.php
+++ /dev/null
@@ -1,9 +0,0 @@
-<?php
-
-namespace App\Http\Middleware;
-
-use Fruitcake\Cors\HandleCors as Middleware;
-
-class HandleCors extends Middleware
-{
-}
diff --git a/config/cors.php b/config/cors.php
index e927bdd7f27..5c9de897237 100644
--- a/config/cors.php
+++ b/config/cors.php
@@ -4,57 +4,31 @@
 
     /*
     |--------------------------------------------------------------------------
-    | Laravel CORS Options
+    | Cross-Origin Resource Sharing (CORS) Configuration
     |--------------------------------------------------------------------------
     |
-    | The allowed_methods and allowed_headers options are case-insensitive.
+    | Here you may configure your settings for cross-origin resource sharing
+    | or "CORS". This determines what cross-origin operations may execute
+    | in web browsers. You are free to adjust these settings as needed.
     |
-    | You don't need to provide both allowed_origins and allowed_origins_patterns.
-    | If one of the strings passed matches, it is considered a valid origin.
-    |
-    | If array('*') is provided to allowed_methods, allowed_origins or allowed_headers
-    | all methods / origins / headers are allowed.
+    | To learn more: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
     |
     */
 
-    /*
-     * You can enable CORS for 1 or multiple paths.
-     * Example: ['api/*']
-     */
-    'paths' => [],
+    'paths' => ['api/*'],
 
-    /*
-    * Matches the request method. `[*]` allows all methods.
-    */
     'allowed_methods' => ['*'],
 
-    /*
-     * Matches the request origin. `[*]` allows all origins.
-     */
     'allowed_origins' => ['*'],
 
-    /*
-     * Matches the request origin with, similar to `Request::is()`
-     */
     'allowed_origins_patterns' => [],
 
-    /*
-     * Sets the Access-Control-Allow-Headers response header. `[*]` allows all headers.
-     */
     'allowed_headers' => ['*'],
 
-    /*
-     * Sets the Access-Control-Expose-Headers response header.
-     */
     'exposed_headers' => false,
 
-    /*
-     * Sets the Access-Control-Max-Age response header.
-     */
     'max_age' => false,
 
-    /*
-     * Sets the Access-Control-Allow-Credentials header.
-     */
     'supports_credentials' => false,
+
 ];