Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Add :allow_if config option to http origin for custom accept/reject #108
In my app I've got a few URL's that can be accessed from anywhere via CORS, but others should remain locked down.
I'm handling the CORS headers on my own, but don't want to disable Rack::Protection altogether, I just need it to ignore a few endpoints
I noticed #95 also adds an
Happy to rework as needed.