mirror of
https://github.com/iv-org/invidious.git
synced 2024-12-20 13:14:32 -05:00
Fix CORS headers for proxied assets
This commit is contained in:
parent
5730280325
commit
f237fd9847
@ -5063,13 +5063,16 @@ get "/videoplayback" do |env|
|
||||
env.response.status_code = response.status_code
|
||||
|
||||
response.headers.each do |key, value|
|
||||
env.response.headers[key] = value
|
||||
if !{"Access-Control-Allow-Origin", "Alt-Svc"}.includes? key
|
||||
env.response.headers[key] = value
|
||||
end
|
||||
end
|
||||
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
if response.headers["Location"]?
|
||||
url = URI.parse(response.headers["Location"])
|
||||
host = url.host
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
url = url.full_path
|
||||
url += "&host=#{host}"
|
||||
@ -5086,8 +5089,6 @@ get "/videoplayback" do |env|
|
||||
env.response.headers["Content-Disposition"] = "attachment; filename=\"#{URI.escape(title)}\"; filename*=UTF-8''#{URI.escape(title)}"
|
||||
end
|
||||
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
proxy_file(response, env)
|
||||
end
|
||||
end
|
||||
@ -5109,15 +5110,18 @@ get "/ggpht/*" do |env|
|
||||
end
|
||||
|
||||
client.get(url, headers) do |response|
|
||||
env.response.status_code = response.status_code
|
||||
response.headers.each do |key, value|
|
||||
env.response.headers[key] = value
|
||||
if !{"Access-Control-Allow-Origin", "Alt-Svc"}.includes? key
|
||||
env.response.headers[key] = value
|
||||
end
|
||||
end
|
||||
|
||||
if response.status_code == 304
|
||||
break
|
||||
end
|
||||
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
proxy_file(response, env)
|
||||
end
|
||||
end
|
||||
@ -5153,13 +5157,17 @@ get "/sb/:id/:storyboard/:index" do |env|
|
||||
client.get(url, headers) do |response|
|
||||
env.response.status_code = response.status_code
|
||||
response.headers.each do |key, value|
|
||||
env.response.headers[key] = value
|
||||
if !{"Access-Control-Allow-Origin", "Alt-Svc"}.includes? key
|
||||
env.response.headers[key] = value
|
||||
end
|
||||
end
|
||||
|
||||
if response.status_code >= 400
|
||||
break
|
||||
end
|
||||
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
proxy_file(response, env)
|
||||
end
|
||||
end
|
||||
@ -5191,13 +5199,17 @@ get "/vi/:id/:name" do |env|
|
||||
client.get(url, headers) do |response|
|
||||
env.response.status_code = response.status_code
|
||||
response.headers.each do |key, value|
|
||||
env.response.headers[key] = value
|
||||
if !{"Access-Control-Allow-Origin", "Alt-Svc"}.includes? key
|
||||
env.response.headers[key] = value
|
||||
end
|
||||
end
|
||||
|
||||
if response.status_code == 304
|
||||
break
|
||||
end
|
||||
|
||||
env.response.headers["Access-Control-Allow-Origin"] = "*"
|
||||
|
||||
proxy_file(response, env)
|
||||
end
|
||||
end
|
||||
|
Loading…
Reference in New Issue
Block a user