Access-Control-Allow-Origin header added to /index* routes (#97)

michael-valdron · web-flow · commit 18007905e1fa · 2022-01-19T11:48:32.000-05:00
* Header 'Access-Control-Allow-Origin: *' added to context within serveDevfileIndexWithType handler.

* Set invoke for 'Access-Control-Allow-Origin' response header moved from serveDevfileIndexWithType to buildIndexAPIResponse for covering all /index* endpoints.
diff --git a/index/server/pkg/server/endpoint.go b/index/server/pkg/server/endpoint.go
@@ -168,6 +168,9 @@ func buildIndexAPIResponse(c *gin.Context) {
 	var responseIndexPath, responseBase64IndexPath string
 	isFiltered := false
 
+	// Sets Access-Control-Allow-Origin response header to allow cross origin requests
+	c.Header("Access-Control-Allow-Origin", "*")
+
 	// Load the appropriate index file name based on the devfile type
 	switch indexType {
 	case string(indexSchema.StackDevfileType):
