cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Open up crossdomain policy to allow all headers from everywhere as I can't

Browse source 
find any information anywhere that gives me any idea why we would want to
restrict what headers can be sent.
This commit is contained in:
Tom Hughes 2009-09-30 23:47:26 +00:00
parent 744b2e8676
commit c192b95021
2 changed files with 2 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

5
public/api/crossdomain.xml
View file

@ -3,8 +3,5 @@
<cross-domain-policy> <cross-domain-policy>
<allow-access-from domain="*"/> <allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers="Authorization,X_HTTP_METHOD_OVERRIDE"/> <allow-http-request-headers-from domain="*" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.org" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.net" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.com" headers="*"/>
</cross-domain-policy> </cross-domain-policy>

5
public/oauth/crossdomain.xml
View file

@ -3,8 +3,5 @@
<cross-domain-policy> <cross-domain-policy>
<allow-access-from domain="*"/> <allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers="Authorization,X_HTTP_METHOD_OVERRIDE"/> <allow-http-request-headers-from domain="*" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.org" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.net" headers="*"/>
<allow-http-request-headers-from domain="*.openstreetmap.com" headers="*"/>
</cross-domain-policy> </cross-domain-policy>