Working marketplace

app/Config/App.php

@@ -16,7 +16,7 @@ class App extends BaseConfig
      *
      * E.g., http://example.com/
      */
-    public string $baseURL = 'http://localhost:8080/';
+    public string $baseURL = 'http://localhost/Todo-App-Backend/public/';
 
     /**
      * Allowed Hostnames in the Site URL other than the hostname in the baseURL.

app/Config/Cors.php

@@ -57,7 +57,7 @@ class Cors extends BaseConfig
          *
          * @see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials
          */
-        'supportsCredentials' => false,
+        'supportsCredentials' => true,
 
         /**
          * Set headers to allow.

app/Config/Routes.php

@@ -90,5 +90,19 @@ $routes->group('api/v1', ['namespace' => 'App\Controllers\Api\V1', 'filter' => [
     $routes->delete('user/themes/(:segment)', 'UserThemeController::delete/$1');
 });
 $routes->get('/themes', 'ThemeStore::index');
+$routes->options('/themes', static function () {
+    header('Access-Control-Allow-Origin: http://localhost:5173');
+    header('Access-Control-Allow-Methods: GET, OPTIONS');
+    header('Access-Control-Allow-Headers: Content-Type, Accept, Fetch');
+    header('Access-Control-Allow-Credentials: true');
+    return response()->setStatusCode(204);
+});
 $routes->post('/themes/upload', 'ThemeStore::upload');
+$routes->options('/themes/upload', static function () {
+    header('Access-Control-Allow-Origin: http://localhost:5173');
+    header('Access-Control-Allow-Methods: POST, OPTIONS');
+    header('Access-Control-Allow-Headers: Content-Type, Accept, Fetch');
+    header('Access-Control-Allow-Credentials: true');
+    return response()->setStatusCode(204);
+});
 $routes->get('/themes/preview/(:segment)', 'ThemeStore::preview/$1');