diff --git a/config/settings.py b/config/settings.py
index 7ddbd8f..5e2685e 100644
--- a/config/settings.py
+++ b/config/settings.py
@@ -178,7 +178,7 @@ if DEBUG:
     USE_X_FORWARDED_HOST = False
 else:
     CORS_ALLOW_ALL_ORIGINS = False
-    CORS_ALLOW_CREDENTIALS = False
+    CORS_ALLOW_CREDENTIALS = True
     SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
     CORS_ALLOWED_ORIGINS = os.getenv('CORS_ALLOWED_ORIGINS').split(',')
     CSRF_COOKIE_SECURE = True