diff --git a/server/web/server.go b/server/web/server.go
index 426c68c..973fb4e 100644
--- a/server/web/server.go
+++ b/server/web/server.go
@@ -48,13 +48,12 @@ func Start(port string) {
 	// corsCfg.AllowHeaders = []string{"*"}
 	// corsCfg.AllowMethods = []string{"*"}
 	// corsCfg.AllowPrivateNetwork = true
-	// corsCfg := cors.DefaultConfig()
-	// corsCfg.AllowAllOrigins = true
-	// corsCfg.AllowHeaders = []string{"Origin", "Content-Length", "Content-Type", "X-Requested-With", "Accept", "Authorization"}
+	corsCfg := cors.DefaultConfig()
+	corsCfg.AllowAllOrigins = true
+	corsCfg.AllowHeaders = []string{"Origin", "Content-Length", "Content-Type", "X-Requested-With", "Accept", "Authorization"}
 
 	route := gin.New()
-	// cors.Default() allows all origins - https://github.com/gin-contrib/cors#default-allows-all-origins
-	route.Use(log.WebLogger(), blocker.Blocker(), gin.Recovery(), cors.Default(), location.Default())
+	route.Use(log.WebLogger(), blocker.Blocker(), gin.Recovery(), cors.New(corsCfg), location.Default())
 
 	route.GET("/echo", echo)