Skip to content

Commit cd71cc9

Browse files
marjune163marjune163
committed
fix(serverHandler/cors): remove credential CORS header
CORS header Access-Control-Allow-Credentials requires Access-Control-Allow-Origin header set to an explicit origin, but not "*". As currently credential is not used for the server, simpliy remove this header.
1 parent b9f7d16 commit cd71cc9

File tree

1 file changed

+0
-1
lines changed

1 file changed

+0
-1
lines changed

src/serverHandler/cors.go

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,6 @@ func (h *handler) cors(w http.ResponseWriter, r *http.Request) {
1010
header := w.Header()
1111

1212
header.Set("Access-Control-Allow-Origin", "*")
13-
header.Set("Access-Control-Allow-Credentials", "true")
1413

1514
if r.Method != http.MethodOptions {
1615
return

0 commit comments

Comments
 (0)