foss/excalidraw-room
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix: ensure non-* CORS origin header is set if no req headers sent

Browse Source
This commit is contained in:
dwelle 2021-01-14 12:10:45 +01:00
parent cc4a6ce1b9
commit c970c74a2b
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/index.ts
View File

@ -24,7 +24,7 @@ const io = socketIO(server, {
handlePreflightRequest: function (req, res) {
var headers = {
"Access-Control-Allow-Headers": "Content-Type, Authorization",
"Access-Control-Allow-Origin": req.header ? req.header.origin : "*",
"Access-Control-Allow-Origin": req.header ? req.header.origin : "https://excalidraw.com",
"Access-Control-Allow-Credentials": true,
};
res.writeHead(200, headers);