change application.rb of deleting cors setting

config/application.rb

@@ -27,7 +27,6 @@ class Application < Rails::Application
     # not contain `.rb` files, or that should not be reloaded or eager loaded.
     # Common ones are `templates`, `generators`, or `middleware`, for example.
     config.autoload_lib(ignore: %w[assets tasks])
-    config.action_view.embed_authenticity_token_in_remote_forms = true
 
     # Configuration for the application, engines, and railties goes here.
     #
@@ -39,9 +38,5 @@ class Application < Rails::Application
 
     # Don't generate system test files.
     config.generators.system_tests = nil
-
-    # allow cross-origin requests to include cookies
-    config.action_controller.allow_forgery_protection = false
-    config.action_controller.default_protect_from_forgery = false
   end
 end