hasura-storage icon indicating copy to clipboard operation
hasura-storage copied to clipboard

Published 20 hours ago verified publisher icon nhost

Add X-Hasura-Role in CORS headers

Open sradigan opened this issue 2 years ago • 1 comments

Please add X-Hasura-Role to the list of allowed CORS headers.

We are working around this problem by placing the service used for file upload and hasura-storage behind an nginx reverse proxy.

I searched for similar issues, but It looks like most other examples of usage either set the x-hasura-admin-secret, or set the x-hasura-default-role to the desired role. Our usage of hasura is to get a JWT with a list of roles and a default set, then select the role by setting the X-Hasura-Role in the request headers.

sradigan avatar Oct 24 '22 14:10 sradigan

Sounds good, if you want to open a PR yourself that'd be appreciated, otherwise, I will try to get to it as soon as possible.

dbarrosop avatar Oct 24 '22 14:10 dbarrosop