Fix cors

app/api/middleware.py

@@ -0,0 +1,19 @@
+from django.http import HttpResponse
+
+class CorsMiddleware:
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+
+        if(request.method == "OPTIONS"):
+            response = HttpResponse(status="200")
+            response.headers['Access-Control-Allow-Origin'] = "*"
+            response.headers['Access-Control-Allow-Headers'] = "*"
+            return  response
+
+        response = self.get_response(request)
+
+        response["Access-Control-Allow-Origin"] = "*"
+
+        return response

app/preports/settings.py

@@ -26,7 +26,7 @@ SECRET_KEY = 'django-insecure-f779!gl7b8__izv_p!x2ssyce2y6g7yc$k_u20wl8!x+877ng^
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = True
 
-ALLOWED_HOSTS = []
+ALLOWED_HOSTS = ["*"]
 
 
 # Application definition
@@ -50,6 +50,7 @@ MIDDLEWARE = [
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'api.middleware.CorsMiddleware'
 ]
 
 ROOT_URLCONF = 'preports.urls'