github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-05-21 18:12:32 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

FIX: Add User Api Key headers to CORS

Browse Source 
- add User-Api-Key and User-Api-Client-Id to Access-Control-Allow-Headers
- update test
This commit is contained in:
Davide Porrovecchio
2018-07-24 02:28:23 +02:00
committed by Sam
parent c9d4288214
commit dd9d815178
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
spec/components/hijack_spec.rb
View File

@ -107,7 +107,7 @@ describe Hijack do
expected = {
"Access-Control-Allow-Origin" => "www.rainbows.com",
"Access-Control-Allow-Headers" => "X-Requested-With, X-CSRF-Token, Discourse-Visible",
"Access-Control-Allow-Headers" => "X-Requested-With, X-CSRF-Token, Discourse-Visible, User-Api-Key, User-Api-Client-Id",
"Access-Control-Allow-Credentials" => "true"
}