From 30cd0536b220397230fe8d2ae6e4eb6fd1fe4a21 Mon Sep 17 00:00:00 2001
From: Sebastian Kippe <sebastian@kip.pe>
Date: Wed, 29 Feb 2012 18:18:01 +0100
Subject: [PATCH] Allow all headers with CORS

---
 liquor-cabinet.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/liquor-cabinet.rb b/liquor-cabinet.rb
index 04e40b0..9ff01a0 100644
--- a/liquor-cabinet.rb
+++ b/liquor-cabinet.rb
@@ -29,7 +29,8 @@ class LiquorCabinet < Sinatra::Base
 
   before "/:user/:category/:key" do
     headers 'Access-Control-Allow-Origin' => '*',
-            'Access-Control-Allow-Methods' => 'GET, PUT, DELETE'
+            'Access-Control-Allow-Methods' => 'GET, PUT, DELETE',
+            'Access-Control-Allow-Headers' => 'Authorization'
 
     @user, @category, @key = params[:user], params[:category], params[:key]
     token = env["HTTP_AUTHORIZATION"] ? env["HTTP_AUTHORIZATION"].split(" ")[1] : ""