discourse/config/initializers
Aaron Boushley 60aa52b753 Enable CORS requests to pass necessary headers.
To fully enable session deletion over CORS we need support for passing the
`X-Requested-With` header so that these requests can pass the `check-xhr` filter.

I also allowed the `X-CSRF-Token` to enable the alternative CSRF passing syntax.
2015-05-14 09:46:41 -07:00
..
00-rails-master-polyfills.rb Check Rails.version instead of ENV 2015-04-28 22:27:47 -04:00
01-redis.rb logster integration (in production as well) 2014-05-07 08:24:15 +10:00
02-freedom_patches.rb added basic passenger support, no long polling but functions 2013-03-11 05:33:20 -07:00
03-sql_builder.rb added basic passenger support, no long polling but functions 2013-03-11 05:33:20 -07:00
04-message_bus.rb MessageBus handles readonly redis now, no need to wrap it 2015-05-04 12:21:00 +10:00
05-site_settings.rb FEATURE: failsafe, in multisite if a site is bad still boot up 2015-02-09 18:31:05 +11:00
06-ensure_login_hint.rb better first boot register admin account help 2014-04-21 11:36:35 -07:00
06-mini_profiler.rb FEATURE: move stylesheet cache out of the uploads directory 2015-05-05 15:50:13 +10:00
08-rack-cors.rb Enable CORS requests to pass necessary headers. 2015-05-14 09:46:41 -07:00
09-omniauth.rb Fixed all broken specs 2013-08-26 12:59:17 +10:00
10-discourse_iife.rb Update SourceURL to work better 2015-04-16 16:51:49 -04:00
11-rack-protection.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
50-force_https.rb don't insert middleware its a problem 2014-01-10 13:51:02 +11:00
99-anon-cache.rb BUGFIX: anon cache was mucking with params 2014-01-09 16:49:12 +11:00
99-drain_pool.rb FIX: run reaper after fork 2014-08-11 17:51:55 +10:00
99-request_tracker.rb refactor traffic report 2015-02-06 14:39:16 +11:00
99-unicorn.rb we don't need oobgc in ruby 2.2, disable for now 2015-04-08 15:24:17 +10:00
inflections.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
logster.rb Get rid of CSRF errors 2015-05-07 10:42:21 +10:00
mime_types.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
oj.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
onebox_options.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
pluralization.rb implement pluralization for server-side and js 2013-03-31 19:55:02 +02:00
quiet_logger.rb remove trailing whitespaces ❤️ 2013-02-26 07:31:35 +03:00
rails3_ar_after_commit_tests.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
secret_token.rb get rid of deprecation 2015-03-09 13:14:29 +11:00
session_store.rb Revert "Try secure: true again" It's definitely broken 2014-01-31 15:02:57 -05:00
sidekiq.rb add hostname to fake env 2015-05-06 12:28:32 +10:00
silence_logger.rb ES6: More components moved over. 2014-05-30 12:28:05 -04:00
sprockets.rb rails master fixes 2014-11-11 12:58:56 +11:00
strong_parameters.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
verify_config.rb Don't blow up if Redis switches to READONLY 2015-04-24 14:37:16 -04:00
watch_for_restart.rb fix initialization issues with unicorn 2013-10-10 14:23:24 +11:00
wrap_parameters.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00