Add access-control-max-age header to cors middleware for avoid options pre-flight.

2014-09-04 11:27:20 +02:00 · 2014-09-04 11:27:20 +02:00 · d460f777f7
parent 2e141eae0a
commit d460f777f7
1 changed files with 1 additions and 0 deletions
--- a/taiga/base/middleware/cors.py
+++ b/taiga/base/middleware/cors.py
@ -37,6 +37,7 @@ class CoorsMiddleware(object):
        response["Access-Control-Allow-Methods"] = ",".join(COORS_ALLOWED_METHODS)
        response["Access-Control-Allow-Headers"] = ",".join(COORS_ALLOWED_HEADERS)
        response["Access-Control-Expose-Headers"] = ",".join(COORS_EXPOSE_HEADERS)
+        response["Access-Control-Max-Age"] = "3600"

        if COORS_ALLOWED_CREDENTIALS:
            response["Access-Control-Allow-Credentials"] = "true"