perbaikan headers

aagusti
Commit 420a6adb authored Dec 29, 2022 by aagusti
Showing 2 changed files with 6 additions and 3 deletions
opensipkd/base/__init__.py
opensipkd/base/views/menus.py
--- a/opensipkd/base/__init__.py
+++ b/opensipkd/base/__init__.py
@@ -95,7 +95,6 @@ def add_cors_headers_response_callback(event):
        headers = {
            'Access-Control-Allow-Methods': 'POST,GET,DELETE,PUT,OPTIONS',
            'Access-Control-Allow-Headers': 'Origin, Content-Type, Accept, Authorization',
-            # 'Access-Control-Allow-Credentials': 'true',
            'Access-Control-Max-Age': '1728000',
        }
        log.info(f"{origin} {request.is_xhr}")
@@ -107,6 +106,8 @@ def add_cors_headers_response_callback(event):
            headers['Access-Control-Allow-Origin'] = origin
        else:
            headers['Access-Control-Allow-Origin'] = "*"
+        if 'Access-Control-Allow-Credentials' not in headers:
+            headers['Access-Control-Allow-Credentials'] = 'true'

        log.info(f"Headers: {headers}")
        response.headers.update(headers)

--- a/opensipkd/base/views/menus.py
+++ b/opensipkd/base/views/menus.py
@@ -47,9 +47,11 @@ class AddSchema(colander.Schema):
                               validator=colander.Length(max=32), oid="kode")
    nama = colander.SchemaNode(colander.String(), oid="nama")
    valu = colander.SchemaNode(colander.String(), oid="valu",
-                               title="Action")
+                               title="Action",
+                               missing=colander.drop)
    meth = colander.SchemaNode(colander.String(), oid="meth",
-                               title="Method")
+                               title="Method",
+                               missing=colander.drop)
    page_typ = colander.SchemaNode(colander.String(), oid="page_typ",
                               title="Page Type")