From a745b6d0a7adbae4e0f6b61d0c896057455cc68a Mon Sep 17 00:00:00 2001 From: "Namhyeon, Go" Date: Fri, 3 Oct 2025 17:47:01 +0900 Subject: [PATCH 1/3] Update WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs Co-authored-by: qodo-merge-pro[bot] <151058649+qodo-merge-pro[bot]@users.noreply.github.com> --- WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs | 8 ++------ 1 file changed, 2 insertions(+), 6 deletions(-) diff --git a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs index 32fa56f..38d3ca1 100644 --- a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs +++ b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs @@ -545,12 +545,8 @@ namespace WelsonJS.Launcher var requestMethod = context.Request.Headers["Access-Control-Request-Method"]; var h = context.Response.Headers; - h["Access-Control-Allow-Methods"] = string.IsNullOrEmpty(requestMethod) - ? "GET, POST, PUT, DELETE, OPTIONS" - : requestMethod; - h["Access-Control-Allow-Headers"] = string.IsNullOrEmpty(requestHeaders) - ? "Content-Type, Authorization, X-Requested-With" - : requestHeaders; + h["Access-Control-Allow-Methods"] = "GET, POST, PUT, DELETE, OPTIONS"; + h["Access-Control-Allow-Headers"] = "Content-Type, Authorization, X-Requested-With"; h["Access-Control-Max-Age"] = "600"; context.Response.StatusCode = 204; From 8ab70208d0aec972101da8d5f24111ff4e644138 Mon Sep 17 00:00:00 2001 From: "Namhyeon, Go" Date: Fri, 3 Oct 2025 17:48:25 +0900 Subject: [PATCH 2/3] Update WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs Co-authored-by: qodo-merge-pro[bot] <151058649+qodo-merge-pro[bot]@users.noreply.github.com> --- WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs index 38d3ca1..214675d 100644 --- a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs +++ b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs @@ -512,11 +512,11 @@ namespace WelsonJS.Launcher return false; var respHeaders = context.Response.Headers; - respHeaders["Vary"] = "Origin"; if (allowed.Any(a => a == "*")) { respHeaders["Access-Control-Allow-Origin"] = "*"; + respHeaders["Vary"] = "Origin"; return true; } @@ -524,6 +524,7 @@ namespace WelsonJS.Launcher { respHeaders["Access-Control-Allow-Origin"] = origin; respHeaders["Access-Control-Allow-Credentials"] = "true"; + respHeaders["Vary"] = "Origin"; return true; } From 6e499bcedf8a670efc5aa7a4f8ca43f269c9c316 Mon Sep 17 00:00:00 2001 From: "Namhyeon, Go" Date: Fri, 3 Oct 2025 17:49:10 +0900 Subject: [PATCH 3/3] Update WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> --- WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs index 214675d..0fc4e24 100644 --- a/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs +++ b/WelsonJS.Toolkit/WelsonJS.Launcher/ResourceServer.cs @@ -521,10 +521,10 @@ namespace WelsonJS.Launcher } if (allowed.Contains(origin, StringComparer.OrdinalIgnoreCase)) + if (allowed.Contains(origin, StringComparer.Ordinal)) { respHeaders["Access-Control-Allow-Origin"] = origin; respHeaders["Access-Control-Allow-Credentials"] = "true"; - respHeaders["Vary"] = "Origin"; return true; }