cors 优化

xiecat · Sep 16, 2021 · e3900b3 · e3900b3
1 parent af598ec
commit e3900b3
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/internal/reverse/response.go b/internal/reverse/response.go
@@ -21,6 +21,9 @@ func (reverse *Reverse) ModifyResponse(shost string) func(response *http.Respons
 		// Stop CSPs and anti-XSS headers from ruining our fun
 		response.Header.Del("Content-Security-Policy")
 		response.Header.Del("X-XSS-Protection")
+		if response.Header.Get("Access-Control-Allow-Origin") != "" {
+			response.Header.Set("Access-Control-Allow-Origin", "*")
+		}
 		response.Header.Add("GoblinServer", Version)
 		err := reverse.modifyLocationHeader(shost, response)
 		if err != nil {