Enable CORS per OAuth2 client

Cross-Origin Resource Sharing (CORS) can now be enabled per OAuth2 client in Ory OAuth2. This is done by specifying the allowed CORS origins for each client.

When creating or updating an OAuth2 client using the Ory CLI, you can use the --allowed-cors-origin option to specify the list of URLs allowed to make CORS requests. This requires CORS to be enabled. Here is an example of how you might use this option:

ory create oauth2-client --allowed-cors-origin https://example.com

In this example, https://example.com is the URL that is allowed to make CORS requests. You can specify multiple URLs by separating them with a space.

Read more in the Ory OAuth2 CORS guide.