Download as
Browse Code »

Commit e51453fd3b20c01ed6b77b2c4396ec4254fbd403

Authored by Braulio Bhavamitra
1 parent abdf6fab
Exists in master and in 27 other branches 1.2+SPB2, 2_split_by_role, add_fields_in_api, api_fixies, api_pagination, api_private_token, api_tasks, article_hit_count, blog_page_bug, checkbox_to_user_can_edit_page, communities_ratings, communities_ratings_moderation, community_ratings_rebase, fix_cloned_article_parent, fix_gallery_image_url, fix_javascript_categories, fix_optional_fields, fix_suggest_article, fix_user_email_validation, highlight_block_fix, notification_plugin, notification_plugin_rebase, script_to_update, split_by_role, temp_ratings, tests, tests_fixies

Allow Access-Control-Allow-Credentials in Access-Control-Allow-Origin

Showing 1 changed file with 1 additions and 0 deletions   Show diff stats
app/controllers/application_controller.rb
  Diff comments   View file @e51453f
@@ -13,6 +13,7 @@ class ApplicationController < ActionController::Base @@ -13,6 +13,7 @@ class ApplicationController < ActionController::Base
13 unless environment.access_control_allow_methods.blank? 13 unless environment.access_control_allow_methods.blank?
14 response.headers["Access-Control-Allow-Methods"] = environment.access_control_allow_methods 14 response.headers["Access-Control-Allow-Methods"] = environment.access_control_allow_methods
15 end 15 end
  16 + response.headers["Access-Control-Allow-Credentials"] = 'true'
16 elsif environment.restrict_to_access_control_origins 17 elsif environment.restrict_to_access_control_origins
17 render_access_denied _('Origin not in allowed.') 18 render_access_denied _('Origin not in allowed.')
18 end 19 end