llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-09-08 04:00:51 +08:00
Code Issues Packages Projects Releases Wiki Activity

Enable CORS for "OPTIONS" request

Browse Source
This commit is contained in:
Gucheng Wang
2023-03-16 00:24:18 +08:00
parent fd883a3211
commit 5e47406e09
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
routers/cors_filter.go
View File

@@ -36,7 +36,7 @@ func CorsFilter(ctx *context.Context) {
if origin != "" && originConf != "" && origin != originConf { if origin != "" && originConf != "" && origin != originConf {
if object.IsOriginAllowed(origin) { if object.IsOriginAllowed(origin) {
ctx.Output.Header(headerAllowOrigin, origin) ctx.Output.Header(headerAllowOrigin, origin)
ctx.Output.Header(headerAllowMethods, "POST, GET, OPTIONS") ctx.Output.Header(headerAllowMethods, "POST, GET, OPTIONS, DELETE")
ctx.Output.Header(headerAllowHeaders, "Content-Type, Authorization") ctx.Output.Header(headerAllowHeaders, "Content-Type, Authorization")
} else { } else {
ctx.ResponseWriter.WriteHeader(http.StatusForbidden) ctx.ResponseWriter.WriteHeader(http.StatusForbidden)
@@ -48,4 +48,11 @@ func CorsFilter(ctx *context.Context) {
return return
} }
} }
if ctx.Input.Method() == "OPTIONS" {
ctx.Output.Header(headerAllowOrigin, "*")
ctx.Output.Header(headerAllowMethods, "POST, GET, OPTIONS, DELETE")
ctx.ResponseWriter.WriteHeader(http.StatusOK)
return
}
} }