Add block_on_origin_mismatch option to middleware (#287)

Co-authored-by: CapableWeb <capableweb@domain.com> Co-authored-by: Rob Ede <robjtede@icloud.com>
2025-06-26 10:27:42 +02:00 · 2022-09-22 01:22:20 +02:00
parent 82a100d96c
commit 3b5682c860
6 changed files with 107 additions and 16 deletions
--- a/actix-cors/examples/cors.rs
+++ b/actix-cors/examples/cors.rs
@ -39,6 +39,8 @@ async fn main() -> std::io::Result<()> {
                    .allowed_header(header::CONTENT_TYPE)
                    // set list of headers that are safe to expose
                    .expose_headers(&[header::CONTENT_DISPOSITION])
+                    // allow cURL/HTTPie from working without providing Origin headers
+                    .block_on_origin_mismatch(false)
                    // set preflight cache TTL
                    .max_age(3600),
            )