From: Jaroslav Kysela <perex@perex.cz>
Date: Mon, 14 Jan 2019 11:24:52 +0000 (+0100)
Subject: http: CORS - add Access-Control-Allow-Credentials header for cookies
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=79acf1c4d4e81283607c9a136f52b6029685ff5d;p=thirdparty%2Ftvheadend.git

http: CORS - add Access-Control-Allow-Credentials header for cookies
---

diff --git a/src/http.c b/src/http.c
index 3a9a1a8d0..a16930bab 100644
--- a/src/http.c
+++ b/src/http.c
@@ -337,6 +337,7 @@ http_send_header(http_connection_t *hc, int rc, const char *content,
       htsbuf_qprintf(&hdrs, "Access-Control-Allow-Origin: %s\r\n", config.cors_origin);
       htsbuf_append_str(&hdrs, "Access-Control-Allow-Methods: POST, GET, OPTIONS\r\n");
       htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with,authorization\r\n");
+      htsbuf_append_str(&hdrs, "Access-Control-Allow-Credentials: true\r\n");
     }
   }