Add Access-Control-Allow-Credentials to the CORS headers.

This commit is contained in:
Vikhyat Korrapati 2014-07-29 22:11:59 +05:30
parent 5bee6887cf
commit 2f30ce79c8
1 changed files with 1 additions and 0 deletions

View File

@ -15,6 +15,7 @@ if GlobalSetting.enable_cors && GlobalSetting.cors_origin.present?
end
headers['Access-Control-Allow-Origin'] = origin || @origins[0]
headers['Access-Control-Allow-Credentials'] = "true"
[status,headers,body]
end
end