CORS middleware fix: allowed-methods

app/api/middleware.py

@@ -10,6 +10,7 @@ class CorsMiddleware:
             response = HttpResponse(status="200")
             response.headers['Access-Control-Allow-Origin'] = "*"
             response.headers['Access-Control-Allow-Headers'] = "*"
+            response.headers['Access-Control-Allow-Methods'] = "*"
             return  response
 
         response = self.get_response(request)