Rails.application.config.middleware.insert_before 0, Rack::Cors do
  allow do
    origins '*'
    resource '*',
      headers: :any,
      expose: ['access-token', 'uid', 'client', 'expiry', 'key', 'school-id', 'support-uid'],
      methods: [:get, :post, :put, :patch, :delete, :options, :head]
  end
end