Git Repo Viewer
git.user254.kr/gitiles/066d93cdcac457bfa94d4933ad7bcf84485cad73^!/.
commit
066d93cdcac457bfa94d4933ad7bcf84485cad73
[log] [tgz]
author
AJ Ross <[email protected]>
Tue Aug 23 18:12:46 2016 -0700
committer
AJ Ross <[email protected]>
Tue Aug 23 18:12:46 2016 -0700
tree
3db73c6d41fa2806e598309583eb5b9e2a7cff82
parent
7ae61e3e60d166ce77f95684dc501d6624eab431 [diff]
Adding remaining headers required to support CORS.

Change-Id: Ifcef404a7d13804fe4fd66f30949906eb0714aea

diff --git a/gitiles-servlet/src/main/java/com/google/gitiles/BaseServlet.java b/gitiles-servlet/src/main/java/com/google/gitiles/BaseServlet.java
index 3e0e3bb..4190710 100644
--- a/gitiles-servlet/src/main/java/com/google/gitiles/BaseServlet.java
+++ b/gitiles-servlet/src/main/java/com/google/gitiles/BaseServlet.java

@@ -359,6 +359,9 @@
 
       if (!Strings.isNullOrEmpty(origin) && allowOriginPattern.matcher(origin).matches()) {
         res.setHeader(HttpHeaders.ACCESS_CONTROL_ALLOW_ORIGIN, origin);
+        res.setHeader(HttpHeaders.ACCESS_CONTROL_ALLOW_HEADERS, "X-Requested-With");
+        res.setHeader(HttpHeaders.ACCESS_CONTROL_ALLOW_CREDENTIALS, "true");
+        res.setHeader(HttpHeaders.ACCESS_CONTROL_ALLOW_METHODS, "GET");
       }
     } else {
       res.setHeader(HttpHeaders.ACCESS_CONTROL_ALLOW_ORIGIN, "*");