Add comment about custom client http header in Access-Control-Allow-H…

…eaders.
streamr-dev · Apr 1, 2020 · 2616eb2 · 2616eb2
1 parent 03acfe3
commit 2616eb2
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/grails-app/conf/Config.groovy b/grails-app/conf/Config.groovy
@@ -188,7 +188,7 @@ environments {
  * API & CORS config
  */
 cors.url.pattern = ['/api/*', '/contact/send', '/profile/*', '/logout/*', '/login/*', '/j_spring_security_check', '/canvas', '/logout', '/j_spring_security_logout']
-cors.headers = ['Access-Control-Allow-Headers': 'origin, authorization, accept, content-type, x-requested-with, Streamr-Client']
+cors.headers = ['Access-Control-Allow-Headers': 'origin, authorization, accept, content-type, x-requested-with, Streamr-Client'] // allow custom Streamr-Client header in CORS requests
 
 streamr.apiKey.revokeNotificationStream = "revoked-api-keys"