mirror of
https://github.com/pierre42100/ComunicAPI
synced 2024-12-25 13:08:58 +00:00
Clients with domains must make their request from https connection
This commit is contained in:
parent
039a47a105
commit
b3cf5fab61
@ -35,7 +35,7 @@ if(!$cs->clients->checkClientRequestTokens())
|
||||
if(defined("APIServiceDomain")){
|
||||
|
||||
//First, limit requests
|
||||
header("Access-Control-Allow-Origin: http://".APIServiceDomain.", https://".APIServiceDomain);
|
||||
header("Access-Control-Allow-Origin: https://".APIServiceDomain);
|
||||
|
||||
//Then check for referer
|
||||
if(!isset($_SERVER["HTTP_REFERER"]))
|
||||
|
Loading…
Reference in New Issue
Block a user