diff options
author | Kim Alvefur <zash@zash.se> | 2021-10-20 23:06:07 +0200 |
---|---|---|
committer | Kim Alvefur <zash@zash.se> | 2021-10-20 23:06:07 +0200 |
commit | aed2ada774adb4dda55266ec1b0620aa861d93e7 (patch) | |
tree | 7c46c89bdbe38842516d93751f438c52c67ca54e /plugins/mod_http_file_share.lua | |
parent | 5016e666403899202ad8b5775761325ee98cf3b8 (diff) | |
download | prosody-aed2ada774adb4dda55266ec1b0620aa861d93e7.tar.gz prosody-aed2ada774adb4dda55266ec1b0620aa861d93e7.zip |
mod_http_file_share: Allow 'Authorization' header via CORS (thanks kawaii)
Can't find anything saying anything on whether this is needed or not.
kawaii reported that both Chrome and Firefox complained unless the
header was added to the list of allowed headers.
Diffstat (limited to 'plugins/mod_http_file_share.lua')
-rw-r--r-- | plugins/mod_http_file_share.lua | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/plugins/mod_http_file_share.lua b/plugins/mod_http_file_share.lua index b05dd742..c67a1649 100644 --- a/plugins/mod_http_file_share.lua +++ b/plugins/mod_http_file_share.lua @@ -584,6 +584,9 @@ module:provides("http", { streaming_uploads = true; cors = { credentials = true; + headers = { + Authorization = true; + }; }; route = { ["PUT /*"] = handle_upload; |