chore: headers allow credentials for cookies

Author: fullstackondemand

src/App.php

@@ -18,9 +18,10 @@ public static function create($dir) {
 
         // Header All Allows
         header("Access-Control-Allow-Origin: {$_ENV['CORS_ORIGIN']}");
+        header("Access-Control-Allow-Credentials: true");
         header("Content-Type: application/json; charset=UTF-8");
         header("Access-Control-Allow-Methods: POST, GET, PUT, DELETE");
-        header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
+        header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With, Access-Control-Allow-Credentials");
 
         // Database Connection
         Database::connection();