liquid_feedback_frontend
view app/main/http_options.lua @ 1858:3d1f0464a3ea
Handle missing ldap.member.allowed function
| author | bsw |
|---|---|
| date | Tue Sep 20 17:35:29 2022 +0200 (19 months ago) |
| parents | 408e4b1d5234 |
| children |
line source
1 -- TODO workaround, needs to be resolved in WebMCP's request.handler
2 if not request._route then
3 return
4 end
6 -- TODO allow cors requests on api module?
7 if request.get_module() == "oauth2" and
8 (request.get_view() == "session" or request.get_view() == "validate")
9 then
10 local origin = request.get_header("Origin")
11 if origin then
12 request.add_header("Access-Control-Allow-Origin", origin)
13 end
14 request.add_header("Access-Control-Allow-Credentials", "true")
15 request.add_header("Access-Control-Max-Age", "0")
16 else
17 request.add_header("Access-Control-Allow-Origin", "*")
18 end
20 request.add_header("Access-Control-Allow-Headers", "Authorization")