nextcloud

mirror of https://github.com/nextcloud/server.git synced 2026-06-11 01:30:50 -04:00

History

noveens c1fa6401a3 Enabled CORS on webdav and ocs * Exclude DAV CORS handling when no Origin specified This will exclude non-browser clients from CORS handling. Fixes some clients like davfs which break when CORS is enabled. * fix: CORS on WebDAV is not working WebDAV is not working at all when used by on browser Javascript because the CORS headers are only present in the OPTION request, but not in the subsequent WebDAV methods. * This behavior is caused by a erroneous json_decode call while retriving the user's domains whitelist. It return an object, so the is_array always fails and no header are sent. * Add Access-Control-Expose-Headers - to allow clients to access certain headers * Adding many headers as allowed headers + add capability to read additional allowed headers from config.php	2023-09-20 14:59:59 +02:00
..
CorsController.php	Enabled CORS on webdav and ocs	2023-09-20 14:59:59 +02:00

noveens c1fa6401a3 Enabled CORS on webdav and ocs

* Exclude DAV CORS handling when no Origin specified
  This will exclude non-browser clients from CORS handling.
  Fixes some clients like davfs which break when CORS is enabled.
* fix: CORS on WebDAV is not working
  WebDAV is not working at all when used by on browser Javascript because the CORS headers
  are only present in the OPTION request, but not in the subsequent WebDAV methods.
  * This behavior is caused by a erroneous json_decode call while retriving the user's domains whitelist.
    It return an object, so the is_array always fails and no header are sent.
* Add Access-Control-Expose-Headers - to allow clients to access certain headers
* Adding many headers as allowed headers + add capability to read additional allowed headers from config.php

2023-09-20 14:59:59 +02:00

CorsController.php

Enabled CORS on webdav and ocs

2023-09-20 14:59:59 +02:00