From 55ac4dcccb683322e12ee507d784a20a30e376e1 Mon Sep 17 00:00:00 2001
From: Wu Cheng-Han
Date: Mon, 10 Oct 2016 20:33:48 +0800
Subject: Update to allow CORS as API on revision actions

---
 lib/response.js | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/lib/response.js b/lib/response.js
index 15b81176..043f4f7d 100755
--- a/lib/response.js
+++ b/lib/response.js
@@ -335,6 +335,13 @@ function actionRevision(req, res, note) {
                 if (!content) {
                     return response.errorNotFound(res);
                 }
+                res.set({
+                    'Access-Control-Allow-Origin': '*', //allow CORS as API
+                    'Access-Control-Allow-Headers': 'Range',
+                    'Access-Control-Expose-Headers': 'Cache-Control, Content-Encoding, Content-Range',
+                    'Cache-Control': 'private', // only cache by client
+                    'X-Robots-Tag': 'noindex, nofollow' // prevent crawling
+                });
                 res.send(content);
             });
         } else {
@@ -349,6 +356,13 @@ function actionRevision(req, res, note) {
             var out = {
                 revision: data
             };
+            res.set({
+                'Access-Control-Allow-Origin': '*', //allow CORS as API
+                'Access-Control-Allow-Headers': 'Range',
+                'Access-Control-Expose-Headers': 'Cache-Control, Content-Encoding, Content-Range',
+                'Cache-Control': 'private', // only cache by client
+                'X-Robots-Tag': 'noindex, nofollow' // prevent crawling
+            });
             res.send(out);
         });
     }
-- 
cgit v1.2.3