fix: expose headers for CORS

WebOfTrust · Jan 17, 2025 · 0441be2 · 0441be2
1 parent f7cfb9d
commit 0441be2
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 1 deletion.
diff --git a/src/keria/app/agenting.py b/src/keria/app/agenting.py
@@ -173,7 +173,8 @@ def setupDoers(config: KERIAServerConfig):
         'signature',
         'signature-input',
         'signify-resource',
-        'signify-timestamp'
+        'signify-timestamp',
+        'signify-receiver'
     ]
     bootApp = falcon.App(middleware=falcon.CORSMiddleware(
         allow_origins='*', allow_credentials='*',

diff --git a/src/keria/core/authing.py b/src/keria/core/authing.py
@@ -19,6 +19,7 @@
     "access-control-allow-origin",
     "access-control-allow-methods",
     "access-control-allow-headers",
+    "access-control-expose-headers",
     "access-control-max-age"
 ]
 

diff --git a/src/keria/core/httping.py b/src/keria/core/httping.py
@@ -13,6 +13,7 @@ def process_request(self, req, resp):
         resp.set_header('Access-Control-Allow-Origin', '*')
         resp.set_header('Access-Control-Allow-Methods', '*')
         resp.set_header('Access-Control-Allow-Headers', '*')
+        resp.set_header('Access-Control-Expose-Headers', '*')
         resp.set_header('Access-Control-Max-Age', 1728000)  # 20 days
         if req.method == 'OPTIONS':
             raise HTTPStatus(falcon.HTTP_200)