Update middleware.

2025-07-08 23:35:31 +02:00 · 2025-07-08 23:35:31 +02:00 · 6f34e96111
commit 6f34e96111
parent 30e8c17000
1 changed files with 5 additions and 0 deletions
--- a/src/snek/system/middleware.py
+++ b/src/snek/system/middleware.py
@ -69,4 +69,9 @@ async def cors_middleware(request, handler):
    response.headers["Access-Control-Allow-Methods"] = "GET, POST, PUT, DELETE, OPTIONS"
    response.headers["Access-Control-Allow-Headers"] = "*"
    response.headers["Access-Control-Allow-Credentials"] = "true"
    response.headers["Cross-Origin-Opener-Policy"] = "same-origin"
    # Uncomment ONE of the following two lines, as needed:
    # response.headers["Cross-Origin-Embedder-Policy"] = "require-corp"
    response.headers["Cross-Origin-Embedder-Policy"] = "credentialless"
    return response