Updated cors.

2025-02-09 23:49:54 +01:00 · 2025-02-09 23:49:54 +01:00 · 49c0f932ab
commit 49c0f932ab
parent 0f400a0b6a
1 changed files with 3 additions and 0 deletions
--- a/src/snek/system/middleware.py
+++ b/src/snek/system/middleware.py
@ -22,6 +22,7 @@ async def cors_allow_middleware(request, handler):
    response.headers["Access-Control-Allow-Origin"] = "*"
    response.headers["Access-Control-Allow-Methods"] = "GET, POST, OPTIONS, PUT, DELETE"
    response.headers["Access-Control-Allow-Headers"] = "*"
+    response.headers["Access-Control-Allow-Credentials"] = "true"
    return response


@ -34,10 +35,12 @@ async def cors_middleware(request, handler):
            "GET, POST, PUT, DELETE, OPTIONS"
        )
        response.headers["Access-Control-Allow-Headers"] = "*"
+        response.headers["Access-Control-Allow-Credentials"] = "true"
        return response

    response = await handler(request)
    response.headers["Access-Control-Allow-Origin"] = "*"
    response.headers["Access-Control-Allow-Methods"] = "GET, POST, PUT, DELETE, OPTIONS"
    response.headers["Access-Control-Allow-Headers"] = "*"
+    response.headers["Access-Control-Allow-Credentials"] = "true"
    return response