CORS - configurable Access-Control-Allow-Headers #101

artlogic · 2015-10-29T19:22:01Z

Since drakov enforces specified request headers (like Authorization), it would be helpful if either CORS headers could be configured (via a --header argument) or auto-configured. Right now I'm manually patching lib/middleware/response.js to allow the Authorization header.

I'd be willing to provide a pull request to add in a --header argument if it would be accepted.

The text was updated successfully, but these errors were encountered:

yakovkhalinsky · 2015-10-29T20:16:21Z

Hey @artlogic was something we had look at putting on our roadmap.

At some point I am thinking I would like to possibly remove or consolidate switches/configuration options that cause header changes in the response for the next minor version update (0.2.0), but for a patch version (0.1.x) I think this would be super useful 👍

artlogic · 2015-12-02T15:39:20Z

I've submitted a pull request. Let me know if I can do anything else to get this out as a patch to v0.1.

artlogic · 2015-12-02T17:25:11Z

Closed via 7fea735

yakovkhalinsky added enhancement proposal labels Oct 29, 2015

artlogic mentioned this issue Dec 2, 2015

CORS - configurable Access-Control-Allow-Headers #106

Merged

artlogic closed this as completed Dec 2, 2015

yakovkhalinsky added this to the 0.1.17 release milestone Dec 2, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CORS - configurable Access-Control-Allow-Headers #101

CORS - configurable Access-Control-Allow-Headers #101

artlogic commented Oct 29, 2015

yakovkhalinsky commented Oct 29, 2015

artlogic commented Dec 2, 2015

artlogic commented Dec 2, 2015

CORS - configurable Access-Control-Allow-Headers #101

CORS - configurable Access-Control-Allow-Headers #101

Comments

artlogic commented Oct 29, 2015

yakovkhalinsky commented Oct 29, 2015

artlogic commented Dec 2, 2015

artlogic commented Dec 2, 2015