bitwarden/server
1
0
Fork 0
mirror of https://github.com/bitwarden/server synced 2025-12-18 09:13:19 +00:00
Code Issues Releases Wiki Activity

set cors policies to only allow web vault origin (#787)

Browse Source 
* set cors policy to only allow web vault

* vault cors policy service
This commit is contained in:
Kyle Spearrin
2020-06-23 18:47:53 -04:00
committed by GitHub
parent 2daca941f3
commit cf70a5e480
6 changed files with 24 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/Notifications/Startup.cs
View File

@@ -102,7 +102,7 @@ namespace Bit.Notifications
app.UseRouting();
// Add Cors
app.UseCors(policy => policy.SetIsOriginAllowed(h => true)
app.UseCors(policy => policy.SetIsOriginAllowed(o => o == globalSettings.BaseServiceUri.Vault)
.AllowAnyMethod().AllowAnyHeader().AllowCredentials());
// Add authentication to the request pipeline.