diff --git a/cmd/wg-gen-web/main.go b/cmd/wg-gen-web/main.go
index 6a79f7b32cd25d285a25b8593247696133c5c602..d1fb3e18a05446f6c6943e1ca6b71a120fe03551 100644
--- a/cmd/wg-gen-web/main.go
+++ b/cmd/wg-gen-web/main.go
@@ -90,7 +90,7 @@ func main() {
 	// cors middleware
 	config := cors.DefaultConfig()
 	config.AllowAllOrigins = true
-	config.AddAllowHeaders("Authorization")
+	config.AddAllowHeaders("Authorization", util.AuthTokenHeaderName)
 	app.Use(cors.New(config))
 
 	// protection middleware
diff --git a/ui/src/services/api.service.js b/ui/src/services/api.service.js
index 97b0093c0a1e2b444f5aaee3effb9100a98dcb47..9a5e6d2679135820e18b26977fe43f1f17bdac0e 100644
--- a/ui/src/services/api.service.js
+++ b/ui/src/services/api.service.js
@@ -4,7 +4,7 @@ import TokenService from "./token.service";
 const ApiService = {
 
   setHeader() {
-    Vue.axios.defaults.headers.common.Authorization = `${TokenService.getToken()}`;
+    Vue.axios.defaults.headers['x-wg-gen-web-auth'] = `${TokenService.getToken()}`;
   },
 
   get(resource) {
diff --git a/util/util.go b/util/util.go
index 3d3f88c73adcfe99564589000b82831df49ece19..c026f8441fd79ffb1be1a9a582059c4d9f2a3e35 100644
--- a/util/util.go
+++ b/util/util.go
@@ -11,7 +11,7 @@ import (
 )
 
 var (
-	AuthTokenHeaderName = "Authorization"
+	AuthTokenHeaderName = "x-wg-gen-web-auth"
 	// RegexpEmail check valid email
 	RegexpEmail = regexp.MustCompile("^[a-zA-Z0-9.!#$%&'*+/=?^_`{|}~-]+@[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(?:\\.[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$")
 )