CartoDB-SQL-API/app/middlewares/cors.js

'use strict';

module.exports = function cors(extraHeaders) {
    return function(req, res, next) {
        var baseHeaders = 'X-Requested-With, X-Prototype-Version, X-CSRF-Token, Authorization';

        if(extraHeaders) {
            baseHeaders += ', ' + extraHeaders;
        }

        res.header('Access-Control-Allow-Origin', '*');
        res.header('Access-Control-Allow-Headers', baseHeaders);

        next();
    };
};
Added cors middleware, decoupled query and job controllers from its dependencies 2016-01-22 00:24:48 +08:00			`'use strict';`

			`module.exports = function cors(extraHeaders) {`
			`return function(req, res, next) {`
adding Authorization to Access-Control-Allow-Headers 2019-01-10 22:55:08 +08:00			`var baseHeaders = 'X-Requested-With, X-Prototype-Version, X-CSRF-Token, Authorization';`
Added cors middleware, decoupled query and job controllers from its dependencies 2016-01-22 00:24:48 +08:00
			`if(extraHeaders) {`
			`baseHeaders += ', ' + extraHeaders;`
			`}`

			`res.header('Access-Control-Allow-Origin', '*');`
			`res.header('Access-Control-Allow-Headers', baseHeaders);`

			`next();`
			`};`
			`};`