From 1f4a93fd7c125fec38f4d04934e4705285eda015 Mon Sep 17 00:00:00 2001
From: Braulio Bhavamitra <braulio@eita.org.br>
Date: Wed, 5 Mar 2014 19:42:05 -0300
Subject: [PATCH] Allow Access-Control-Allow-Credentials in Access-Control-Allow-Origin

---
 app/controllers/application_controller.rb | 1 +
 1 file changed, 1 insertion(+), 0 deletions(-)

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 49c7f04..d09fa09 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -28,6 +28,7 @@ class ApplicationController < ActionController::Base
       unless environment.access_control_allow_methods.blank?
         response.headers["Access-Control-Allow-Methods"] = environment.access_control_allow_methods
       end
+      response.headers["Access-Control-Allow-Credentials"] = 'true'
     elsif environment.restrict_to_access_control_origins
       render_access_denied _('Origin not in allowed.')
     end
--
libgit2 0.21.2