diff --git a/charts/geonode/templates/nginx/nginx-conf.yaml b/charts/geonode/templates/nginx/nginx-conf.yaml index b19263c..f23f726 100644 --- a/charts/geonode/templates/nginx/nginx-conf.yaml +++ b/charts/geonode/templates/nginx/nginx-conf.yaml @@ -167,7 +167,7 @@ data: {{- if .Values.nginx.external_cors.enabled }} add_header Access-Control-Allow-Origin {{ .Values.nginx.external_cors.domain }}; {{ end }} - add_header Access-Control-Allow-Credentials false; + add_header Access-Control-Allow-Credentials {{ .Values.nginx.access_control_allow.credentials }}; add_header Access-Control-Allow-Headers "Content-Type, Accept, Authorization, Origin, User-Agent"; add_header Access-Control-Allow-Methods "GET, POST, PUT, PATCH, OPTIONS"; diff --git a/charts/geonode/values.yaml b/charts/geonode/values.yaml index ed85763..5113c4f 100644 --- a/charts/geonode/values.yaml +++ b/charts/geonode/values.yaml @@ -390,6 +390,9 @@ nginx: memory: "1Gi" # -- limit cpu as in resource.requests.cpu (https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/) cpu: "800m" + access_control_allow: + # -- control value of Access-Control-Allow-Credentials in nginx configuration + credentials: false external_cors: # -- Add Access-Control-Allow-Origin directive to allow integration from an external domain enabled: false