allow cross_origin for /api/alias/new

app/api/views/index.py

@@ -2,6 +2,7 @@ import random
 
 import arrow
 from flask import jsonify, request
+from flask_cors import cross_origin
 
 from app.api.base import api_bp
 from app.config import EMAIL_DOMAIN
@@ -12,6 +13,7 @@ from app.utils import random_string
 
 
 @api_bp.route("/alias/new", methods=["GET", "POST"])
+@cross_origin()
 def index():
     """
     the incoming request must provide a valid api-key in "Authentication" header and