summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorctucx <leah@antifa.jetzt>2020-06-27 20:56:29 +0200
committerctucx <leah@antifa.jetzt>2020-06-27 20:56:29 +0200
commit1d00368f917c6af0622848902dd83ec43e484ff5 (patch)
tree76571a83c572e1532a799c95c92d13ef8ee4f2ed
parent7e33173c2c49284044a0660efbcdc8c2082be39b (diff)
downloadtinyDAV-1d00368f917c6af0622848902dd83ec43e484ff5.tar.gz
tinyDAV-1d00368f917c6af0622848902dd83ec43e484ff5.tar.bz2
tinyDAV-1d00368f917c6af0622848902dd83ec43e484ff5.zip
grrr
-rw-r--r--public/dav.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/public/dav.php b/public/dav.php
index 6773736..a78e1ab 100644
--- a/public/dav.php
+++ b/public/dav.php
@@ -8,8 +8,6 @@ ini_set('memory_limit', '1024M');
define("PATH", __DIR__.'/');
date_default_timezone_set('Europe/Berlin');
-header("Access-Control-Allow-Origin: *");
-
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
// return only the headers and not the content
// only allow CORS if we're doing a GET - i.e. no saving for now.
@@ -19,6 +17,8 @@ if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
header('Access-Control-Allow-Headers: X-Requested-With');
}
exit;
+} else {
+ header("Access-Control-Allow-Origin: *");
}
if (!file_exists('vendor/')) {