diff --git a/web/app/Http/Middleware/Cors.php b/web/app/Http/Middleware/Cors.php
index 298c6d3..c93acd9 100644
--- a/web/app/Http/Middleware/Cors.php
+++ b/web/app/Http/Middleware/Cors.php
@@ -34,7 +34,7 @@ class Cors
 					->setStatusCode(204)
 					->header('Access-Control-Allow-Origin', $allowedOrigin)
 					->header('Access-Control-Allow-Methods', '*')
-					->header('Access-Control-Allow-Headers', '*')
+					->header('Access-Control-Allow-Headers', $request->header('Access-Control-Request-Headers'))
 					->header('Access-Control-Allow-Credentials', 'true')
 					->header('Access-Control-Max-Age', '86400');
 		}