Fix access-allow

2015-03-06 20:11:28 -03:00 · 2015-03-06 20:11:28 -03:00 · 6abddcc3af
parent 6633dc0190
commit 6abddcc3af
1 changed files with 6 additions and 8 deletions
--- a/lib/expressapp.js
+++ b/lib/expressapp.js
@ -27,21 +27,19 @@ ExpressApp.start = function(opts) {
  WalletService.initialize(opts.WalletService);
  var app = express();
  app.use(function(req, res, next) {
+    res.setHeader('Access-Control-Allow-Origin', req.headers.origin);
+    res.setHeader('Access-Control-Allow-Credentials', 'true');
    res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS, PUT, DELETE');
-    res.setHeader('Access-Control-Allow-Headers', 'x-signature,x-identity,Content-Type');
+    res.setHeader('Access-Control-Allow-Headers', 'x-signature,x-identity,X-Requested-With,Content-Type,Authorization');
    next();
  });
  var allowCORS = function(req, res, next) {
    if ('OPTIONS' == req.method) {
-      var headers = {};
-      headers['Access-Control-Allow-Credentials'] = true;
-      headers['Access-Control-Allow-Origin'] = req.headers.origin;
-      res.writeHead(200, headers);
+      res.sendStatus(200);
      res.end();
+      return;
    }
-    else {
-      next();
-    }
+    next();
  }
  app.use(allowCORS);