Mirrors/shlink
1
0
Fork 0
mirror of https://github.com/shlinkio/shlink.git synced 2026-03-06 15:23:12 +08:00
Code Issues Packages Projects Releases Wiki Activity

Improved CrossDomainMiddleware preventing headers to be injected on non-CORS requests

Browse Source
This commit is contained in:
Alejandro Celaya
2016-07-19 20:20:18 +02:00
parent 0daa24739d
commit 839329d627
4 changed files with 49 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
module/Rest/src/Middleware/CheckAuthenticationMiddleware.php
View File

@@ -63,7 +63,7 @@ class CheckAuthenticationMiddleware implements MiddlewareInterface
/** @var RouteResult $routeResult */
$routeResult = $request->getAttribute(RouteResult::class);
if ((isset($routeResult) && $routeResult->getMatchedRouteName() === 'rest-authenticate')
|| strtolower($request->getMethod()) === 'options'
|| $request->getMethod() === 'OPTIONS'
) {
return $out($request, $response);
}