bitPickups/ad-aures_castoPod
1
0
Fork 0
mirror of https://github.com/ad-aures/castopod.git synced 2026-04-12 19:17:45 +02:00
Code Issues Projects Releases Packages Wiki Activity

feat: allow cross origin requests on episode comments

Browse source
This commit is contained in:
Yassine Doghri 2021-07-24 15:33:34 +00:00
commit e12f95aca1
No known key found for this signature in database
GPG key ID: 3E7F89498B960C9F
2 changed files with 15 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

14
app/Controllers/EpisodeController.php
View file

@ -210,6 +210,19 @@ class EpisodeController extends BaseController
->setBody($podcastObject->toJSON());
}
/**
* @noRector ReturnTypeDeclarationRector
*/
public function commentsPreflight(): Response
{
return $this->response->setHeader('Access-Control-Allow-Origin', '*') // for allowing any domain, insecure
->setHeader('Access-Control-Allow-Headers', '*') // for allowing any headers, insecure
->setHeader('Access-Control-Allow-Methods', 'GET, OPTIONS') // allows GET and OPTIONS methods only
->setHeader('Access-Control-Max-Age', '86400')
->setHeader('Cache-Control', 'public, max-age=86400')
->setStatusCode(200);
}
/**
* @noRector ReturnTypeDeclarationRector
*/
@ -250,6 +263,7 @@ class EpisodeController extends BaseController
return $this->response
->setContentType('application/activity+json')
->setHeader('Access-Control-Allow-Origin', '*')
->setBody($collection->toJSON());
}
}