From e51453fd3b20c01ed6b77b2c4396ec4254fbd403 Mon Sep 17 00:00:00 2001
From: Braulio Bhavamitra <braulio@eita.org.br>
Date: Wed, 5 Mar 2014 19:42:05 -0300
Subject: [PATCH] Allow Access-Control-Allow-Credentials in Access-Control-Allow-Origin

---
 app/controllers/application_controller.rb | 1 +
 1 file changed, 1 insertion(+), 0 deletions(-)

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 07a4cf1..1d83e9c 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -13,6 +13,7 @@ class ApplicationController < ActionController::Base
       unless environment.access_control_allow_methods.blank?
         response.headers["Access-Control-Allow-Methods"] = environment.access_control_allow_methods
       end
+      response.headers["Access-Control-Allow-Credentials"] = 'true'
     elsif environment.restrict_to_access_control_origins
       render_access_denied _('Origin not in allowed.')
     end
--
libgit2 0.21.2