public void GlobalCorsHasAccessControlHeaders(IRestClient client)
{
appHost.LoadPlugin(new CorsFeature {
AutoHandleOptionsRequests = false
});
var response = RequestContextTests.GetResponseHeaders(Config.ServiceStackBaseUri + "/globalcorsfeature");
Assert.That(response[HttpHeaders.AllowOrigin], Is.EqualTo("*"));
Assert.That(response[HttpHeaders.AllowMethods], Is.EqualTo("GET, POST, PUT, DELETE, OPTIONS"));
Assert.False(response.ContainsKey(HttpHeaders.AllowCredentials));
Assert.That(response[HttpHeaders.AllowHeaders], Is.EqualTo("Content-Type"));
}
public void GlobalCorsHasAccessControlHeaders()
{
appHost.LoadPlugin(new CorsFeature {
AutoHandleOptionsRequests = false
});
var response = RequestContextTests.GetResponseHeaders(Config.ServiceStackBaseUri + "/globalcorsfeature");
Assert.That(response[HttpHeaders.AllowOrigin], Is.EqualTo(CorsFeature.DefaultOrigin));
Assert.That(response[HttpHeaders.AllowMethods], Is.EqualTo(CorsFeature.DefaultMethods));
Assert.False(response.ContainsKey(HttpHeaders.AllowCredentials));
Assert.That(response[HttpHeaders.AllowHeaders], Is.EqualTo(CorsFeature.DefaultHeaders));
}