Commit d3811907 authored by ale's avatar ale

Allow all headers in CORS requests

Temporary workaround if we do not want to maintain a whitelist.
parent b2b75382
Pipeline #3540 passed with stages
in 4 minutes and 5 seconds
......@@ -445,6 +445,7 @@ func (h *Server) Handler() http.Handler {
// Add CORS headers on the main SSO API endpoint.
c := cors.New(cors.Options{
AllowedOrigins: h.allowedOrigins,
AllowedHeaders: []string{"*"},
AllowCredentials: true,
MaxAge: 86400,
})
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment