From: Richard Kuhnt <r15ch13+git@gmail.com>
Date: Mon, 23 Jan 2017 16:20:26 +0000 (+0100)
Subject: Allow Authorization Header
X-Git-Tag: v4.2.1~127
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=8e2b5833e9e0d073e942ab5e8373f445ac722381;p=thirdparty%2Ftvheadend.git

Allow Authorization Header

Allows Authorization Header to be used by XMLHttpRequest
---

diff --git a/src/http.c b/src/http.c
index eb8e278b0..321a25dbd 100644
--- a/src/http.c
+++ b/src/http.c
@@ -337,7 +337,7 @@ http_send_header(http_connection_t *hc, int rc, const char *content,
     if (config.cors_origin && config.cors_origin[0]) {
       htsbuf_qprintf(&hdrs, "Access-Control-Allow-Origin: %s\r\n", config.cors_origin);
       htsbuf_append_str(&hdrs, "Access-Control-Allow-Methods: POST, GET, OPTIONS\r\n");
-      htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with\r\n");
+      htsbuf_append_str(&hdrs, "Access-Control-Allow-Headers: x-requested-with,authorization\r\n");
     }
   }