From bbafa1b82a69ff375a36b1bfed03cf091e29a51f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bar=C4=B1=C5=9F=20Soner=20U=C5=9Fakl=C4=B1?=
 <barisusakli@gmail.com>
Date: Tue, 20 Oct 2020 18:38:50 -0400
Subject: [PATCH] Revert "fix: [breaking] send configured config URL as origin
 if not custom"

This reverts commit 205a10308ef7b87cc3cef05906652f27ece1f17d.
---
 src/middleware/headers.js | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/src/middleware/headers.js b/src/middleware/headers.js
index 325a114f61..03efe7c077 100644
--- a/src/middleware/headers.js
+++ b/src/middleware/headers.js
@@ -2,7 +2,6 @@
 
 const os = require('os');
 const winston = require('winston');
-const nconf = require('nconf');
 const _ = require('lodash');
 
 const meta = require('../meta');
@@ -35,7 +34,6 @@ module.exports = function (middleware) {
 
 			if (origins.includes(req.get('origin'))) {
 				headers['Access-Control-Allow-Origin'] = encodeURI(req.get('origin'));
-				headers.Vary = headers.Vary ? `${headers.Vary}, Origin` : 'Origin';
 			}
 		}
 
@@ -54,15 +52,10 @@ module.exports = function (middleware) {
 			originsRegex.forEach(function (regex) {
 				if (regex && regex.test(req.get('origin'))) {
 					headers['Access-Control-Allow-Origin'] = encodeURI(req.get('origin'));
-					headers.Vary = headers.Vary ? `${headers.Vary}, Origin` : 'Origin';
 				}
 			});
 		}
 
-		if (!headers.hasOwnProperty('Access-Control-Allow-Origin')) {
-			headers['Access-Control-Allow-Origin'] = nconf.get('url');
-		}
-
 		if (meta.config['access-control-allow-credentials']) {
 			headers['Access-Control-Allow-Credentials'] = meta.config['access-control-allow-credentials'];
 		}