diff plugins/mod_http_file_share.lua @ 11857:e080d6aa0b3b

mod_http_file_share: Allow 'Authorization' header via CORS (thanks kawaii) Can't find anything saying anything on whether this is needed or not. kawaii reported that both Chrome and Firefox complained unless the header was added to the list of allowed headers.
author Kim Alvefur <zash@zash.se>
date Wed, 20 Oct 2021 23:06:07 +0200
parents ae5ac9830add
children fceebfb28d86
line wrap: on
line diff
--- a/plugins/mod_http_file_share.lua	Wed Oct 20 17:32:34 2021 +0200
+++ b/plugins/mod_http_file_share.lua	Wed Oct 20 23:06:07 2021 +0200
@@ -584,6 +584,9 @@
 		streaming_uploads = true;
 		cors = {
 			credentials = true;
+			headers = {
+				Authorization = true;
+			};
 		};
 		route = {
 			["PUT /*"] = handle_upload;