From: Jaroslav Kysela <perex@perex.cz>
Date: Mon, 14 Jan 2019 11:24:52 +0000 (+0100)
Subject: http: CORS - add Access-Control-Allow-Credentials header for cookies
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=4bf32134bb31a564ad8ad34402442cd6efd1433e;p=thirdparty%2Ftvheadend.git

http: CORS - add Access-Control-Allow-Credentials header for cookies
---

diff --git a/src/http.c b/src/http.c
index a11caf80d..72070c52f 100644
--- a/src/http.c
+++ b/src/http.c
@@ -334,6 +334,7 @@ http_send_header(http_connection_t *hc, int rc, const char *content,
       htsbuf_qprintf(&hdrs, "Access-Control-Allow-Origin: %s\r\n", config.cors_origin);
       htsbuf_append_str(&hdrs, "Access-Control-Allow-Methods: POST, GET, OPTIONS\r\n");
       htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with,authorization\r\n");
+      htsbuf_append_str(&hdrs, "Access-Control-Allow-Credentials: true\r\n");
     }
   }