feat: Update CORS allowed headers for compat. w/ axios-cache-interceptor (#35402)

See https://axios-cache-interceptor.js.org/config/request-specifics#cache-cachetakeover cache.cacheTakeover (default true): you need to make sure Cache-Control, Pragma and Expires headers are included into your server’s Access-Control-Allow-Headers CORS configuration.
2024-08-30 11:53:35 -07:00
parent 92cc3bf808
commit bfee53b9b1
1 changed files with 3 additions and 0 deletions
--- a/lms/envs/common.py
+++ b/lms/envs/common.py
@@ -3687,6 +3687,9 @@ if FEATURES.get('ENABLE_CORS_HEADERS'):
 # because that decision might happen in a later config file. (The headers to
 # allow is an application logic, and not site policy.)
 CORS_ALLOW_HEADERS = corsheaders_default_headers + (
+    'cache-control',
+    'expires',
+    'pragma',
    'use-jwt-cookie',
 )