From 8b9917c7f7f2f09fb41d4a57f525e8ff72b4abef Mon Sep 17 00:00:00 2001
From: "scotty.b.brown@gmail.com"
 <scotty.b.brown@gmail.com@b87d56ec-f9c0-11de-8c8a-61c5e9addfc9>
Date: Fri, 7 Jan 2011 07:51:29 +0000
Subject: [PATCH] Possible fix towards the CORS issues in Chrome etc

git-svn-id: https://beef.googlecode.com/svn/trunk@679 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
---
 lib/server/inithandler.rb   | 5 +++++
 lib/server/zombiehandler.rb | 2 ++
 2 files changed, 7 insertions(+)

diff --git a/lib/server/inithandler.rb b/lib/server/inithandler.rb
index 4d82a233e..51b807a6e 100644
--- a/lib/server/inithandler.rb
+++ b/lib/server/inithandler.rb
@@ -24,6 +24,9 @@ module BeEF
     #
     def do_POST(request, response)
 
+      response.header['Access-Control-Allow-Origin'] = '*'
+      response.header['Access-Control-Allow-Methods'] = 'POST, GET'
+      response.header['Access-Control-Allow-Headers'] = 'Content-Type'
       response.body = ''
       
       # validate hook session value
@@ -96,6 +99,8 @@ module BeEF
 
     end
     
+    alias do_OPTIONS do_POST
+    
     # returns a selected parameter from the query string.
     def get_param(query, key)
       return nil if query[key].nil?
diff --git a/lib/server/zombiehandler.rb b/lib/server/zombiehandler.rb
index 8c7c10e8b..a3397e8c1 100644
--- a/lib/server/zombiehandler.rb
+++ b/lib/server/zombiehandler.rb
@@ -74,11 +74,13 @@ module BeEF
       response.header['Content-Type'] = 'text/javascript' 
       response.header['Access-Control-Allow-Origin'] = '*'
       response.header['Access-Control-Allow-Methods'] = 'POST, GET'
+      response.header['Access-Control-Allow-Headers'] = 'Content-Type'
       response.body = @body
       
     end
       
     alias do_POST do_GET
+    alias do_OPTIONS do_GET
     
     private