mirrors/gotosocial
1
0
Fork 1
mirror of https://github.com/superseriousbusiness/gotosocial.git synced 2024-06-26 09:00:36 +00:00
Code Issues Packages Projects Releases Wiki Activity

[bugfix] Add idempotency-key to allowed CORS headers (#1670)

Browse source
This commit is contained in:
tobi 2023-04-03 12:01:24 +02:00 committed by GitHub
parent 9c209fe6e4
commit b847af1dbd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
internal/middleware/cors.go
View file

@ -54,6 +54,11 @@ func CORS() gin.HandlerFunc {
// needed to pass oauth bearer tokens
"Authorization",
// Some clients require this; see:
// - https://docs.joinmastodon.org/methods/statuses/#headers
// - https://github.com/superseriousbusiness/gotosocial/issues/1664
"Idempotency-Key",
// needed for websocket upgrade requests
"Upgrade",
"Sec-WebSocket-Extensions",