Added content-type to Access-Control-Allow-Headers needed for playground preflight

chofnar · andaaron · commit 74630ed3a0bd · 2022-08-16T22:47:24.000+03:00
Signed-off-by: Catalin Hofnar &lt;catalin.hofnar@gmail.com&gt;
diff --git a/pkg/api/controller.go b/pkg/api/controller.go
@@ -78,7 +78,7 @@ func (c *Controller) CORSHandler(response http.ResponseWriter, request *http.Req
 	}
 
 	response.Header().Set("Access-Control-Allow-Methods", "HEAD,GET,POST,OPTIONS")
-	response.Header().Set("Access-Control-Allow-Headers", "Authorization")
+	response.Header().Set("Access-Control-Allow-Headers", "Authorization,content-type")
 }
 
 func DumpRuntimeParams(log log.Logger) {
diff --git a/pkg/api/controller_test.go b/pkg/api/controller_test.go
@@ -269,7 +269,7 @@ func TestHtpasswdSingleCred(t *testing.T) {
 				So(resp, ShouldNotBeNil)
 				So(resp.StatusCode(), ShouldEqual, http.StatusOK)
 
-				header := []string{"Authorization"}
+				header := []string{"Authorization,content-type"}
 
 				resp, _ = resty.R().SetBasicAuth(user, password).Options(baseURL + "/v2/")
 				So(resp, ShouldNotBeNil)

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ func (c Controller) CORSHandler(response http.ResponseWriter, request http.Req`
`78`	`78`	`}`
`79`	`79`
`80`	`80`	`response.Header().Set("Access-Control-Allow-Methods", "HEAD,GET,POST,OPTIONS")`
`81`		`- response.Header().Set("Access-Control-Allow-Headers", "Authorization")`
	`81`	`+ response.Header().Set("Access-Control-Allow-Headers", "Authorization,content-type")`
`82`	`82`	`}`
`83`	`83`
`84`	`84`	`func DumpRuntimeParams(log log.Logger) {`