9 lines
381 B

11 years ago
#> cross-origin resource sharing
path: '/'
#? access control headers correctly set
response.should.have.header 'Access-Control-Allow-Origin','*'
10 years ago
response.should.have.header 'Access-Control-Allow-Methods','GET, OPTIONS'
11 years ago
response.should.have.header 'Access-Control-Allow-Headers','X-Requested-With,content-type'
response.should.have.header 'Access-Control-Allow-Credentials','true'