revised CORS config for lalowed origins

backend/src/main/java/com/vaessl/app/config/CorsConfig.java

@@ -8,16 +8,13 @@ import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
 @Configuration
 public class CorsConfig implements WebMvcConfigurer {
 
-    @Value("${vaessl.frontend-local-url}")
-    private String frontendLocalUrl;
-
-    @Value("${vaessl.frontend-public-url}")
-    private String frontendPublicUrl;
+    @Value("${vaessl.allowed-origins}")
+    private String[] allowedOrigins;
 
     @Override
     public void addCorsMappings(CorsRegistry registry) {
         registry.addMapping("/**")
-                .allowedOrigins(frontendLocalUrl, frontendPublicUrl)
+                .allowedOrigins(allowedOrigins)
                 .allowedMethods("GET", "POST", "DELETE", "OPTIONS")
                 .allowedHeaders("Content-Type", "Accept")
                 .allowCredentials(true);