Method: Rack::Cors::Resource#to_headers
- Defined in:
- lib/rack/cors/resource.rb
#to_headers(env) ⇒ Object
61 62 63 64 65 66 67 68 69 70 |
# File 'lib/rack/cors/resource.rb', line 61 def to_headers(env) h = { 'access-control-allow-origin' => origin_for_response_header(env[Rack::Cors::HTTP_ORIGIN]), 'access-control-allow-methods' => methods.collect { |m| m.to_s.upcase }.join(', '), 'access-control-expose-headers' => expose.nil? ? '' : expose.join(', '), 'access-control-max-age' => max_age.to_s } h['access-control-allow-credentials'] = 'true' if credentials header_proc.call(h) end |