diff --git a/src/server.rs b/src/server.rs
index 1b1dabd..feb2f3d 100644
--- a/src/server.rs
+++ b/src/server.rs
@@ -1222,7 +1222,7 @@ fn add_cors(res: &mut Response) {
     );
     res.headers_mut().insert(
         "Access-Control-Allow-Headers",
-        HeaderValue::from_static("Authorization,Destination,Range"),
+        HeaderValue::from_static("Authorization,Destination,Range,Content-Type"),
     );
     res.headers_mut().insert(
         "Access-Control-Expose-Headers",
diff --git a/tests/cors.rs b/tests/cors.rs
index e325226..d6ed521 100644
--- a/tests/cors.rs
+++ b/tests/cors.rs
@@ -23,7 +23,7 @@ fn cors(#[with(&["--enable-cors"])] server: TestServer) -> Result<(), Error> {
     );
     assert_eq!(
         resp.headers().get("access-control-allow-headers").unwrap(),
-        "Authorization,Destination,Range"
+        "Authorization,Destination,Range,Content-Type"
     );
     assert_eq!(
         resp.headers().get("access-control-expose-headers").unwrap(),