Merge pull request #327 from Dar13/add-cors-headers-public-api

Add CORS header ('Access-Control-Allow-Origin') to public APIs
pull/375/head
Matt Baer 4 years ago committed by GitHub
commit f75d4cb75d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
  1. 3
      handle.go

@ -601,6 +601,9 @@ func (h *Handler) AllReader(f handlerFunc) http.HandlerFunc {
log.Info(h.app.ReqLog(r, status, time.Since(start))) log.Info(h.app.ReqLog(r, status, time.Since(start)))
}() }()
// Allow any origin, as public endpoints are handled in here
w.Header().Set("Access-Control-Allow-Origin", "*");
if h.app.App().cfg.App.Private { if h.app.App().cfg.App.Private {
// This instance is private, so ensure it's being accessed by a valid user // This instance is private, so ensure it's being accessed by a valid user
// Check if authenticated with an access token // Check if authenticated with an access token

Loading…
Cancel
Save