From: Niklas Poslovski Date: Tue, 22 May 2018 14:26:01 +0000 (+0200) Subject: Repair some access-control headers required for third-party webclients X-Git-Url: https://git.squeep.com/?a=commitdiff_plain;h=f0e8194a7129b6885ad74a694157e10e29f20807;p=akkoma Repair some access-control headers required for third-party webclients --- diff --git a/installation/pleroma.nginx b/installation/pleroma.nginx index b8abdce22..b6ca30cc9 100644 --- a/installation/pleroma.nginx +++ b/installation/pleroma.nginx @@ -52,8 +52,8 @@ server { # if you do not want remote frontends to be able to access your Pleroma backend # server, remove these lines. add_header 'Access-Control-Allow-Origin' '*' always; - add_header 'Access-Control-Allow-Methods' 'POST, GET, OPTIONS' always; - add_header 'Access-Control-Allow-Headers' 'Authorization, Content-Type' always; + add_header 'Access-Control-Allow-Methods' 'POST, PUT, DELETE, GET, PATCH, OPTIONS' always; + add_header 'Access-Control-Allow-Headers' 'Authorization, Content-Type, Idempotency-Key' always; add_header 'Access-Control-Expose-Headers' 'Link, X-RateLimit-Reset, X-RateLimit-Limit, X-RateLimit-Remaining, X-Request-Id' always; if ($request_method = OPTIONS) { return 204;