Allow Authorization Header

author Richard Kuhnt <r15ch13+git@gmail.com>

Mon, 23 Jan 2017 16:20:26 +0000 (17:20 +0100)

committer Jaroslav Kysela <perex@perex.cz>

Wed, 25 Jan 2017 08:07:31 +0000 (09:07 +0100)
author Richard Kuhnt <r15ch13+git@gmail.com>
Mon, 23 Jan 2017 16:20:26 +0000 (17:20 +0100)
committer Jaroslav Kysela <perex@perex.cz>
Wed, 25 Jan 2017 08:07:31 +0000 (09:07 +0100)
diff --git a/src/http.c b/src/http.c

index eb8e278b0bb6e28a6b5c27357caa3e63b4811dfa..321a25dbdfc6ea5c13befad859126afc2ace3755 100644 (file)
--- a/src/http.c
+++ b/src/http.c
@@ -337,7 +337,7 @@ http_send_header(http_connection_t *hc, int rc, const char *content,
      if (config.cors_origin && config.cors_origin[0]) {
        htsbuf_qprintf(&hdrs, "Access-Control-Allow-Origin: %s\r\n", config.cors_origin);
        htsbuf_append_str(&hdrs, "Access-Control-Allow-Methods: POST, GET, OPTIONS\r\n");
-      htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with\r\n");
+      htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with,authorization\r\n");
      }
    }
author	Richard Kuhnt <r15ch13+git@gmail.com>
	Mon, 23 Jan 2017 16:20:26 +0000 (17:20 +0100)
committer	Jaroslav Kysela <perex@perex.cz>
	Wed, 25 Jan 2017 08:07:31 +0000 (09:07 +0100)