Expose Link headers via CORS

This commit is contained in:
Eugen Rochko 2017-02-15 23:26:17 +01:00
parent 5426f06ac2
commit ff49649130

View file

@ -34,7 +34,7 @@ module Mastodon
allow do
origins '*'
resource '/api/*', headers: :any, methods: [:post, :put, :delete, :get, :options], credentials: false
resource '/api/*', headers: :any, methods: [:post, :put, :delete, :get, :options], credentials: false, expose: ['Link', 'X-RateLimit-Reset', 'X-RateLimit-Limit', 'X-RateLimit-Remaining', 'X-Request-Id']
resource '/oauth/token', headers: :any, methods: [:post], credentials: false
end
end