gideonthomas
commented
8 years ago @Pomax looks like tests are failing
Closed Pomax closed 8 years ago
gideonthomas
commented
8 years ago @Pomax looks like tests are failing
Pomax
commented
8 years ago yeah the old test needed an update (anything hitting /api/... gets CORS cleared specifically on its own domain, not on *)
gideonthomas
commented
8 years ago lgtm r+
This adds the CORS var that tells Django to allow
withCredentials()and CSRF tokens when hitting a route with an HTTP write verb (POST/PUT/DELETE/etc)