diff --git a/routes/api.php b/routes/api.php
index 1c305e49567e..bccbdc7d62e3 100644
--- a/routes/api.php
+++ b/routes/api.php
@@ -25,14 +25,14 @@ Route::group(['middleware' => ['api_secret_check']], function () {
 
 });
 
-Route::group(['api_secret_check','domain_db'], function () {
+Route::group(['api_secret_check','domain_db','cors'], function () {
 
   Route::post('api/v1/login', 'Auth\LoginController@apiLogin')->name('login.submit');
   Route::post('api/v1/reset_password', 'Auth\ForgotPasswordController@sendResetLinkEmail')->name('password.reset');
 
 });
 
-Route::group(['middleware' => ['api_db','api_secret_check','token_auth'], 'prefix' =>'api/v1', 'as' => 'api.'], function () {
+Route::group(['middleware' => ['api_db','api_secret_check','token_auth','cors'], 'prefix' =>'api/v1', 'as' => 'api.'], function () {
 
   Route::resource('activities', 'ActivityController'); // name = (clients. index / create / show / update / destroy / edit