Commit f9788bc1 authored by Robert Schilling's avatar Robert Schilling
Browse files

CORS: Whitelist pagination headers

parent d4154195
---
title: 'CORS: Whitelist pagination headers'
merge_request: 9651
author: Robert Schilling
......@@ -120,7 +120,7 @@ class Application < Rails::Application
credentials: true,
headers: :any,
methods: :any,
expose: ['Link']
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
end
# Cross-origin requests must not have the session cookie available
......@@ -130,7 +130,7 @@ class Application < Rails::Application
credentials: false,
headers: :any,
methods: :any,
expose: ['Link']
expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
end
end
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment