1f349/violet
4
0
Fork 0
mirror of https://github.com/1f349/violet.git synced 2024-11-21 10:51:40 +00:00
Code Issues Packages Projects Releases Wiki Activity

Patch to not use * for CORS auth header

Browse Source
This commit is contained in:
Melon 2024-02-14 19:30:21 +00:00
parent f8dde8eebe
commit 333394cf89
Signed by: melon
GPG Key ID: 6C9D970C50D26A25
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
target/route.go
View File

@ -20,8 +20,9 @@ import (
// serveApiCors outputs the cors headers to make APIs work. // serveApiCors outputs the cors headers to make APIs work.
var serveApiCors = cors.New(cors.Options{ var serveApiCors = cors.New(cors.Options{
AllowedOrigins: []string{"*"}, // allow all origins for api requests // allow all origins for api requests
AllowedHeaders: []string{"Content-Type", "Authorization"}, AllowOriginFunc: func(origin string) bool { return true },
AllowedHeaders: []string{"Content-Type", "Authorization"},
AllowedMethods: []string{ AllowedMethods: []string{
http.MethodGet, http.MethodGet,
http.MethodHead, http.MethodHead,