diff --git a/app.go b/app.go
index 3fdf149c5aac989c3009b63a914b94938b49fbf1..c251c22cc826e5b5a01080cf9741e1af304710eb 100644
--- a/app.go
+++ b/app.go
@@ -17,7 +17,7 @@ func serve(sig chan os.Signal, db *leveldb.DB) error {
 
 	// cors
 	app.Use(cors.New(cors.Config{
-		AllowOrigins: []string{conf[allowedOrigins]},
+		AllowOrigins: []string{conf[allowedURL]},
 		AllowHeaders: []string{"Origin", "Content-Type", "Accept"},
 	}))
 
diff --git a/conf.go b/conf.go
index 8790fc9c7861e56b2c21d0f9dd0fa3afacb14766..5a9ed93c521b4bc1591751b0dee095ee8116d88e 100644
--- a/conf.go
+++ b/conf.go
@@ -8,30 +8,29 @@ import (
 const (
 	dbPath uint8 = iota
 	listenAddr
-	allowedOrigins
-	hCaptchaSecret
+	allowedURL
 	hCaptchaSiteKey
+	hCaptchaSecret
 	verboseLogging
-	confLen
 )
 
 // env variable, default pairing
-var confEnv = [confLen][2]string{
-	{"DB", "db"},
-	{"LISTEN_ADDR", "127.0.0.1:3000"},
-	{"ALLOWED_ORIGINS", "https://hizla.io"},
-	{"HCAPTCHA_SECRET", "unset"},
-	{"HCAPTCHA_SITE_KEY", "unset"},
-	{"VERBOSE", "1"},
+var confEnv = [...][2]string{
+	dbPath:          {"DB", "db"},
+	listenAddr:      {"LISTEN_ADDR", "127.0.0.1:3000"},
+	allowedURL:      {"ALLOWED_URL", "https://hizla.io"},
+	hCaptchaSiteKey: {"HCAPTCHA_SITE_KEY", "unset"},
+	hCaptchaSecret:  {"HCAPTCHA_SECRET", "unset"},
+	verboseLogging:  {"VERBOSE", "1"},
 }
 
 // resolved config values
-var conf [confLen]string
+var conf [len(confEnv)]string
 
 var verbose bool
 
 func init() {
-	for i := 0; i < int(confLen); i++ {
+	for i := 0; i < len(confEnv); i++ {
 		if v, ok := os.LookupEnv(confEnv[i][0]); !ok {
 			conf[i] = confEnv[i][1]
 		} else {