add cors

requirements.txt

@@ -1,2 +1,3 @@
 Flask==3.1.3
 APScheduler==3.11.2
+flask-cors==6.0.2

server.py

@@ -4,9 +4,12 @@ from datetime import datetime, timedelta
 from flask import Flask, request, jsonify, render_template_string, session, redirect, send_from_directory
 from apscheduler.schedulers.background import BackgroundScheduler
 from helpers.send_email import send_gmail
+from flask_cors import CORS
 
 app = Flask(__name__, static_folder='static', static_url_path='/static')
-app.secret_key = "cheie_ultra_secreta_aquila"
+CORS(app, resources={r"/api/*": {"origins": "*"}})
+
+app.secret_key = "83380d04a906b9830e7ddd341aba35a6"
 DB_FILE = "data/aquila_forms.db"
 ADMIN_EMAIL = "macamete.robert@gmail.com" 
 
@@ -80,8 +83,10 @@ def delete_client(id):
     return redirect('/admin')
 
 # --- ENDPOINT PUBLIC PENTRU SITE-URI ---
-@app.route('/api/v1/send', methods=['POST'])
+@app.route('/api/v1/send', methods=['POST', 'OPTIONS'])
 def public_api():
+    if request.method == 'OPTIONS':
+        return '', 200
     cid = request.form.get('client_id')
     with sqlite3.connect(DB_FILE) as conn:
         conn.row_factory = sqlite3.Row