Skip to content

Commit

Permalink
Forget rack-cors and just set config.action_controller.forgery_protec…
Browse files Browse the repository at this point in the history 
…tion_origin_check = false
  • Loading branch information
@billdueber
billdueber committed Sep 23, 2024
1 parent 436321b commit 7a1bc20
Show file tree
Hide file tree
Showing 2 changed files with 4 additions and 2 deletions.
2 changes: 0 additions & 2 deletions Gemfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,8 +21,6 @@ gem "aws-sdk-s3", "~> 1.160"
gem "content_disposition", "~> 1.0"
gem "uppy-s3_multipart", "~> 1.2"

# CORS
gem 'rack-cors'

#####################################
# Try to work around brokenness on
Expand Down
4 changes: 4 additions & 0 deletions config/application.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,10 @@
module Dromedary
class Application < Rails::Application

# CORS with rails running not-at-the-root turns out to be mostly broken.
# So we do this, which stinks.
config.action_controller.forgery_protection_origin_check = false

config.time_zone = 'Eastern Time (US & Canada)'

# Initialize configuration defaults for originally generated Rails version.
Expand Down

0 comments on commit 7a1bc20

Please sign in to comment.