I am facing issue of CORS in moodle mobile app. I have implemented a default functionality in web and my mobile api is hitting to web to run that functionallity. I have inserted header in my WEB php file for allowing all origin.
But this can be risky and vulnerable. Is there any way to reduce the risk.
I know that i can add url instead of * but how i can know the url of app?
Any help would be appreactiated.