From d6b4c7b67c8a0372cc39b07b729e210b32bac902 Mon Sep 17 00:00:00 2001
From: Yicheng Qin <qycqycqycqycqyc@gmail.com>
Date: Wed, 28 Oct 2015 13:58:04 -0700
Subject: [PATCH] pkg/cors: add authorization into Access-Control-Allow-Headers

This helps browser to send auth-related request to etcd server when
cors flag is set.
---
 pkg/cors/cors.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/cors/cors.go b/pkg/cors/cors.go
index 7b509fb3f..b1a0baf08 100644
--- a/pkg/cors/cors.go
+++ b/pkg/cors/cors.go
@@ -65,7 +65,7 @@ type CORSHandler struct {
 func (h *CORSHandler) addHeader(w http.ResponseWriter, origin string) {
 	w.Header().Add("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
 	w.Header().Add("Access-Control-Allow-Origin", origin)
-	w.Header().Add("Access-Control-Allow-Headers", "accept, content-type")
+	w.Header().Add("Access-Control-Allow-Headers", "accept, content-type, authorization")
 }
 
 // ServeHTTP adds the correct CORS headers based on the origin and returns immediately