Possible fix towards the CORS issues in Chrome etc

git-svn-id: https://beef.googlecode.com/svn/trunk@679 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
2011-01-07 07:51:29 +00:00
parent a4d4d69b87
commit 8b9917c7f7
2 changed files with 7 additions and 0 deletions
--- a/lib/server/inithandler.rb
+++ b/lib/server/inithandler.rb
@@ -24,6 +24,9 @@ module BeEF
    #
    def do_POST(request, response)

+      response.header['Access-Control-Allow-Origin'] = '*'
+      response.header['Access-Control-Allow-Methods'] = 'POST, GET'
+      response.header['Access-Control-Allow-Headers'] = 'Content-Type'
      response.body = ''
      
      # validate hook session value
@@ -96,6 +99,8 @@ module BeEF

    end
    
+    alias do_OPTIONS do_POST
+    
    # returns a selected parameter from the query string.
    def get_param(query, key)
      return nil if query[key].nil?
--- a/lib/server/zombiehandler.rb
+++ b/lib/server/zombiehandler.rb
@@ -74,11 +74,13 @@ module BeEF
      response.header['Content-Type'] = 'text/javascript' 
      response.header['Access-Control-Allow-Origin'] = '*'
      response.header['Access-Control-Allow-Methods'] = 'POST, GET'
+      response.header['Access-Control-Allow-Headers'] = 'Content-Type'
      response.body = @body
      
    end
      
    alias do_POST do_GET
+    alias do_OPTIONS do_GET
    
    private