Esempio n. 1
0
 def set_default_headers(self):
     if config.get_option("server.enableCSRFProtection"):
         self.set_header("Access-Control-Allow-Headers", "X-Xsrftoken")
         self.set_header("Access-Control-Allow-Origin", Report.get_url(config.get_option("browser.serverAddress")))
         self.set_header("Vary", "Origin")
         self.set_header("Access-Control-Allow-Credentials", "true")
     elif routes.allow_cross_origin_requests():
         self.set_header("Access-Control-Allow-Origin", "*")
Esempio n. 2
0
 def set_default_headers(self):
     self.set_header("Access-Control-Allow-Methods", "POST, PUT, DELETE")
     self.set_header("Access-Control-Allow-Headers", "Content-Type")
     if config.get_option("server.enableXsrfProtection"):
         self.set_header(
             "Access-Control-Allow-Origin",
             Report.get_url(config.get_option("browser.serverAddress")),
         )
         self.set_header("Access-Control-Allow-Headers", "X-Xsrftoken, Content-Type")
         self.set_header("Vary", "Origin")
         self.set_header("Access-Control-Allow-Credentials", "true")
     elif routes.allow_cross_origin_requests():
         self.set_header("Access-Control-Allow-Origin", "*")
Esempio n. 3
0
    def set_default_headers(self):
        # Avoid a circular import
        from streamlit.server.routes import allow_cross_origin_requests

        if allow_cross_origin_requests():
            self.set_header("Access-Control-Allow-Origin", "*")
Esempio n. 4
0
 def set_default_headers(self):
     if routes.allow_cross_origin_requests():
         self.set_header("Access-Control-Allow-Origin", "*")