Set CORS headers on /sso_logout

4b7b71ae · ale · cd70b62f · 4b7b71ae
Commit 4b7b71ae authored Feb 18, 2018 by ale
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

src/mod_sso/mod_sso.c src/mod_sso/mod_sso.c +3 -0

No files found.
--- a/src/mod_sso/mod_sso.c
+++ b/src/mod_sso/mod_sso.c
@@ -399,6 +399,9 @@ static int mod_sso_method_handler(request_rec *r) {
               "sso: logout? \"%s\" \"%s\"", sso_logout_path, uri);
  if (!strcmp(uri, sso_logout_path)) {
    modsso_del_cookie(r, sso_cookie_name, service_path);
+    apr_table_setn(r->headers_out, "Access-Control-Allow-Origin", s_cfg->login_server);
+    apr_table_setn(r->headers_out, "Access-Control-Allow-Credentials", "true");
+    apr_table_setn(r->headers_out, "Cache-Control", "no-cache");
    return http_sendstring(r, "OK");
  }