diff --git a/docs/src/main/asciidoc/http-reference.adoc b/docs/src/main/asciidoc/http-reference.adoc index 26193c63f8583e..3a20df8edafb98 100644 --- a/docs/src/main/asciidoc/http-reference.adoc +++ b/docs/src/main/asciidoc/http-reference.adoc @@ -340,7 +340,7 @@ quarkus.http.cors=true %dev.quarkus.http.cors.origins=/.*/ ---- -It is important that you enable all origins only in dev profile, supporting all origins in production is not recommended if you would like CORS filter be effective in blocking unauthorized origins. +It is important that you enable all origins only for the dev profile, allowing all origins in production is not recommended and could expose your applications to serious security issues. == HTTP Limits Configuration