liquid_feedback_frontend
annotate app/main/http_options.lua @ 1309:32cc544d5a5b
Cumulative patch for upcoming frontend version 4
| author | bsw/jbe |
|---|---|
| date | Sun Jul 15 14:07:29 2018 +0200 (2018-07-15) |
| parents | |
| children | 26a1ed6bc9df |
| rev | line source |
|---|---|
| bsw/jbe@1309 | 1 -- TODO workaround, needs to be resolved in WebMCP's request.handler |
| bsw/jbe@1309 | 2 if not request._route then |
| bsw/jbe@1309 | 3 return |
| bsw/jbe@1309 | 4 end |
| bsw/jbe@1309 | 5 |
| bsw/jbe@1309 | 6 if request.get_module() == "oauth2" and request.get_view() == "session" then |
| bsw/jbe@1309 | 7 local origin = request.get_header("Origin") |
| bsw/jbe@1309 | 8 if origin then |
| bsw/jbe@1309 | 9 request.add_header("Access-Control-Allow-Origin", origin) |
| bsw/jbe@1309 | 10 end |
| bsw/jbe@1309 | 11 request.add_header("Access-Control-Allow-Credentials", "true") |
| bsw/jbe@1309 | 12 request.add_header("Access-Control-Max-Age", "0") |
| bsw/jbe@1309 | 13 else |
| bsw/jbe@1309 | 14 request.add_header("Access-Control-Allow-Origin", "*") |
| bsw/jbe@1309 | 15 end |
| bsw/jbe@1309 | 16 |
| bsw/jbe@1309 | 17 request.add_header("Access-Control-Allow-Headers", "Authorization") |