set Access-Control-Allow-Headers to a static string (#1973)

3 years ago · ba6c0fa822
2 changed files with 3 additions and 3 deletions
--- a/internal/core/hls_http_server.go
+++ b/internal/core/hls_http_server.go
@ -91,7 +91,7 @@ func (s *hlsHTTPServer) onRequest(ctx *gin.Context) {
				@@ -91,7 +91,7 @@ func (s *hlsHTTPServer) onRequest(ctx *gin.Context) {
 	switch ctx.Request.Method {
 	case http.MethodOptions:
 		ctx.Writer.Header().Set("Access-Control-Allow-Methods", "OPTIONS, GET")
-		ctx.Writer.Header().Set("Access-Control-Allow-Headers", ctx.Request.Header.Get("Access-Control-Request-Headers"))
+		ctx.Writer.Header().Set("Access-Control-Allow-Headers", "Range")
 		ctx.Writer.WriteHeader(http.StatusOK)
 		return

--- a/internal/core/webrtc_http_server.go
+++ b/internal/core/webrtc_http_server.go
@ -181,7 +181,7 @@ func (s *webRTCHTTPServer) onRequest(ctx *gin.Context) {
				@@ -181,7 +181,7 @@ func (s *webRTCHTTPServer) onRequest(ctx *gin.Context) {
 		switch ctx.Request.Method {
 		case http.MethodOptions:
 			ctx.Writer.Header().Set("Access-Control-Allow-Methods", "OPTIONS, GET")
-			ctx.Writer.Header().Set("Access-Control-Allow-Headers", ctx.Request.Header.Get("Access-Control-Request-Headers"))
+			ctx.Writer.Header().Set("Access-Control-Allow-Headers", "Content-Type, If-Match")
 			ctx.Writer.WriteHeader(http.StatusOK)
 			return

@ -275,7 +275,7 @@ func (s *webRTCHTTPServer) onRequest(ctx *gin.Context) {
				@@ -275,7 +275,7 @@ func (s *webRTCHTTPServer) onRequest(ctx *gin.Context) {
 		switch ctx.Request.Method {
 		case http.MethodOptions:
 			ctx.Writer.Header().Set("Access-Control-Allow-Methods", "OPTIONS, POST, PATCH")
-			ctx.Writer.Header().Set("Access-Control-Allow-Headers", ctx.Request.Header.Get("Access-Control-Request-Headers"))
+			ctx.Writer.Header().Set("Access-Control-Allow-Headers", "Content-Type, If-Match")
 			if authRes.err == nil {
 				ctx.Writer.Header()["Link"] = iceServersToLinkHeader(s.parent.genICEServers())
 			}