Revert "Allow private-network CORS origins in development"

This reverts commit 1b2e0cb8af.
2026-03-01 17:12:06 -03:00
parent 1b2e0cb8af
commit bfc89fe5ce
7 changed files with 1 additions and 31 deletions
--- a/README.md
+++ b/README.md
@@ -121,7 +121,7 @@ cd frontend && npm run preview

 Main runtime variables are defined in `docker-compose.yml`:

- API and worker: `DATABASE_URL`, `REDIS_URL`, `REDIS_SECURITY_MODE`, `REDIS_TLS_MODE`, `STORAGE_ROOT`, `PUBLIC_BASE_URL`, `CORS_ORIGINS`, `CORS_ALLOW_CREDENTIALS`, `CORS_ALLOW_DEVELOPMENT_PRIVATE_NETWORK_ORIGINS`, `AUTH_BOOTSTRAP_*`, `PROCESSING_LOG_STORE_*`, `CONTENT_EXPORT_*`, `TYPESENSE_*`, `APP_SETTINGS_ENCRYPTION_KEY`
+- API and worker: `DATABASE_URL`, `REDIS_URL`, `REDIS_SECURITY_MODE`, `REDIS_TLS_MODE`, `STORAGE_ROOT`, `PUBLIC_BASE_URL`, `CORS_ORIGINS`, `CORS_ALLOW_CREDENTIALS`, `AUTH_BOOTSTRAP_*`, `PROCESSING_LOG_STORE_*`, `CONTENT_EXPORT_*`, `TYPESENSE_*`, `APP_SETTINGS_ENCRYPTION_KEY`
 - Frontend: optional `VITE_API_BASE`

 When `VITE_API_BASE` is unset, the frontend uses `http://<current-hostname>:8000/api/v1`.