FIX: Update DIRECT_UPLOAD CORS ruleset to include new Amazon signing headers (#23379)

New headers were added to upload PUT requests as part of a MinIO update (cf42466). This change updates the asset bucket CORS ruleset to allow the new headers in the preflight request.

See https://dev.discourse.org/t/111136



Co-authored-by: Sam Saffron <sam.saffron@gmail.com>
This commit is contained in:
Chris Rendle-Short 2023-09-04 16:09:52 +10:00 committed by GitHub
parent 0a3f1852c6
commit 7ea3079e3e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -19,7 +19,13 @@ class S3CorsRulesets
}.freeze
DIRECT_UPLOAD = {
allowed_headers: %w[Authorization Content-Disposition Content-Type],
allowed_headers: %w[
Authorization
Content-Disposition
Content-Type
X-Amz-Acl
X-Amz-Meta-Sha1-Checksum
],
expose_headers: ["ETag"],
allowed_methods: %w[GET HEAD PUT],
allowed_origins: ["*"],