From ef85b6de42c9d73451eb392178e1faa95b002edd Mon Sep 17 00:00:00 2001
From: Jenny Shen <jenny.shen@shopify.com>
Date: Tue, 21 Feb 2023 12:48:37 -0500
Subject: [rubygems/rubygems] Add access control headers for all requests to
 allow RubyGems.org to render the response

https://github.com/rubygems/rubygems/commit/22b329eb60
---
 test/rubygems/test_webauthn_listener_response.rb | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'test/rubygems')

diff --git a/test/rubygems/test_webauthn_listener_response.rb b/test/rubygems/test_webauthn_listener_response.rb
index 5820ae9957..b3e54e0f19 100644
--- a/test/rubygems/test_webauthn_listener_response.rb
+++ b/test/rubygems/test_webauthn_listener_response.rb
@@ -57,6 +57,9 @@ class WebauthnListenerResponseTest < Gem::TestCase
     expected_payload = <<~RESPONSE
       HTTP/1.1 405 Method Not Allowed
       Connection: close
+      Access-Control-Allow-Origin: rubygems.example
+      Access-Control-Allow-Methods: POST
+      Access-Control-Allow-Headers: Content-Type, Authorization, x-csrf-token
       Allow: GET, OPTIONS
     RESPONSE
 
@@ -69,6 +72,9 @@ class WebauthnListenerResponseTest < Gem::TestCase
     expected_payload = <<~RESPONSE
       HTTP/1.1 404 Not Found
       Connection: close
+      Access-Control-Allow-Origin: rubygems.example
+      Access-Control-Allow-Methods: POST
+      Access-Control-Allow-Headers: Content-Type, Authorization, x-csrf-token
     RESPONSE
 
     assert_equal expected_payload, payload
@@ -80,6 +86,9 @@ class WebauthnListenerResponseTest < Gem::TestCase
     expected_payload = <<~RESPONSE
       HTTP/1.1 400 Bad Request
       Connection: close
+      Access-Control-Allow-Origin: rubygems.example
+      Access-Control-Allow-Methods: POST
+      Access-Control-Allow-Headers: Content-Type, Authorization, x-csrf-token
       Content-Type: text/plain
       Content-Length: 22
 
-- 
cgit v1.2.1