<FromGitter>
<dyakubovich> Hello. I try to configure Amber::Pipe::CORS.new for cross-origin request. I added additional origins and extra header `X-Auth-Key`. On the frontend app i use `fetch` with options `credentials: 'include'`. It is working good, but if i add extra header `X-Auth-Key` to request, i will get 403 CORS error. Any idea how to send extra header with `credentials: 'include'` ? It's code example: ⏎ ⏎ ```code paste,
<FromGitter>
<Blacksmoke16> nvm, that var isnt used anywhere anyway
<FromGitter>
<Blacksmoke16> only for preflight*
<FromGitter>
<dyakubovich> Yes, thank you @Blacksmoke16 , problem was in method list by default
<FromGitter>
<Blacksmoke16> oh it was failing the OPTIONS request?
<FromGitter>
<dyakubovich> I added `GET` to the methods `methods = %w(GET POST PUT PATCH DELETE)` and `plug Amber::Pipe::CORS.new(origins: origins, headers: headers, methods: methods, credentials: true)` . So now it works
<FromGitter>
<Blacksmoke16> but it was making an `OPTIONS` request?
<FromGitter>
<dyakubovich> Yes
<FromGitter>
<Blacksmoke16> i so that would make sense, `credentials` option is prob setting a cookie header which isnt a "safe" header so it triggers a preflight