Allow CORS override for Auth function url

[jbrown]

In order to get the code adapter working I had to include the credentials in the /callback fetch request, but the browser will error if the allowed origins is set to '*'. This change allowed me to do the following:

const auth = new sst.aws.Auth("Auth", {
  authenticator: {
    handler: "./infra/auth.handler",
    url: {
      cors: {
        allowCredentials: true,
        allowHeaders: ["content-type"],
        allowMethods: ["*"],
        allowOrigins: ["http://localhost:3000"]
      }
    },
  },
});

Note: the Auth function must have a url so if you tried to pass false it would still be true.

Fixes #517

[jayair]

Hmm we need to review this. Is there an issue attached to this? If not, if you could open one and link to it.

[jbrown]

@jayair Please see issue #517 for more details and a repo to reproduce

[jbrown]

Closing as I misunderstood how the Auth flow worked.