nelmio_cors:
    defaults:
        origin_regex: true
#        allow_origin: ['%env(CORS_ALLOW_ORIGIN)%']
#        allow_methods: ['GET', 'OPTIONS', 'POST', 'PUT', 'PATCH', 'DELETE']
#        allow_headers: ['Content-Type', 'Authorization']
#        expose_headers: ['Link']
        expose_headers: ['*']
        allow_origin: [ '*' ]
        allow_headers: [ '*' ]
        allow_methods: ['GET', 'OPTIONS', 'POST', 'PATCH', 'DELETE']
        max_age: 3600
    paths:
        '^/': null
#        '^/api/':
#          allow_origin: [ '*' ]
#          allow_headers: [ '*' ]
#          allow_methods: [ '*' ]
#          max_age: 3600