['*'], 'allowed_origins' => ['*'], 'allowed_origins_patterns' => [], 'allowed_methods' => ['GET', 'POST', 'DELETE', 'PUT', 'OPTIONS'], 'allowed_headers' => ['Content-Type', 'Authorization', 'Refresh-Authorization', 'Content-Disposition'], 'exposed_headers' => [], 'max_age' => 7200, 'supports_credentials' => true, ];