3diy
/
moonraker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

authorization: allow auth related CORS Headers 

Allow Authorization, X-Api-Key, and X-Access-Token headers when CORS is enabled.

Signed-off-by:  Eric Callahan <arksine.code@gmail.com>
This commit is contained in:
Arksine 2021-04-18 07:30:14 -04:00 committed by Arksine
parent 7eba8e58e3
commit 4e0e223599
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
moonraker/components/authorization.py
View File

@ -487,7 +487,8 @@ class Authorization:
request.set_header( request.set_header(
"Access-Control-Allow-Headers", "Access-Control-Allow-Headers",
"Origin, Accept, Content-Type, X-Requested-With, " "Origin, Accept, Content-Type, X-Requested-With, "
"X-CRSF-Token") "X-CRSF-Token, Authorization, X-Access-Token, "
"X-Api-Key")
def close(self): def close(self):
self.prune_handler.stop() self.prune_handler.stop()