summaryrefslogtreecommitdiff
path: root/config/application.rb
diff options
context:
space:
mode:
authorRobert Schilling <rschilling@student.tugraz.at>2017-03-02 10:14:22 +0100
committerRobert Schilling <rschilling@student.tugraz.at>2017-03-02 10:14:22 +0100
commitf9788bc12988636b03ffd3d00da10f8d58a13a37 (patch)
tree156e0bfda3536cfac7378c6123b72f24a6aa436d /config/application.rb
parentd4154195329b0a823848df8ceae144aebd6ccf6b (diff)
downloadgitlab-ce-f9788bc12988636b03ffd3d00da10f8d58a13a37.tar.gz
CORS: Whitelist pagination headersexpose-pagination-headers
Diffstat (limited to 'config/application.rb')
-rw-r--r--config/application.rb4
1 files changed, 2 insertions, 2 deletions
diff --git a/config/application.rb b/config/application.rb
index 9088d3c432b..45f3b20d214 100644
--- a/config/application.rb
+++ b/config/application.rb
@@ -120,7 +120,7 @@ module Gitlab
credentials: true,
headers: :any,
methods: :any,
- expose: ['Link']
+ expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
end
# Cross-origin requests must not have the session cookie available
@@ -130,7 +130,7 @@ module Gitlab
credentials: false,
headers: :any,
methods: :any,
- expose: ['Link']
+ expose: ['Link', 'X-Total', 'X-Total-Pages', 'X-Per-Page', 'X-Page', 'X-Next-Page', 'X-Prev-Page']
end
end