jfinn
/
excalidraw_room_0
關注 1
收藏 0
複製 0
程式碼 問題 0 合併請求 0 版本發佈 0 Wiki 活動
瀏覽代碼

fix: ensure non-* CORS origin header is set if no req headers sent

master
dwelle 4 年之前
父節點
cc4a6ce1b9
當前提交
c970c74a2b
共有 1 個檔案被更改,包括 1 行新增1 行删除
統一視圖 顯示文件統計
  1. 1
    1
      src/index.ts

+ 1
- 1
src/index.ts 查看文件

24 
   handlePreflightRequest: function (req, res) {
 24 
   handlePreflightRequest: function (req, res) {
25 
     var headers = {
 25 
     var headers = {
26 
       "Access-Control-Allow-Headers": "Content-Type, Authorization",
 26 
       "Access-Control-Allow-Headers": "Content-Type, Authorization",
27 
-      "Access-Control-Allow-Origin": req.header ? req.header.origin : "*",
27 
+      "Access-Control-Allow-Origin": req.header ? req.header.origin : "https://excalidraw.com",
28 
       "Access-Control-Allow-Credentials": true,
 28 
       "Access-Control-Allow-Credentials": true,
29 
     };
 29 
     };
30 
     res.writeHead(200, headers);
 30 
     res.writeHead(200, headers);

Write Preview
Loading…
取消
儲存