Allowing flash to do what all other HTTP clients can (well, apart from the bits which...
authorMatt Amos <zerebubuth@gmail.com>
Wed, 26 Aug 2009 14:49:49 +0000 (14:49 +0000)
committerMatt Amos <zerebubuth@gmail.com>
Wed, 26 Aug 2009 14:49:49 +0000 (14:49 +0000)
public/api/crossdomain.xml
public/oauth/crossdomain.xml

index cbc8e25..669cae3 100644 (file)
@@ -3,8 +3,5 @@
 
 <cross-domain-policy>
        <allow-access-from domain="*"/>
-       <allow-http-request-headers-from domain="*" headers="Authorization"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.org" headers="*"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.net" headers="*"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.com" headers="*"/>
+       <allow-http-request-headers-from domain="*" headers="*"/>
 </cross-domain-policy>
index cbc8e25..669cae3 100644 (file)
@@ -3,8 +3,5 @@
 
 <cross-domain-policy>
        <allow-access-from domain="*"/>
-       <allow-http-request-headers-from domain="*" headers="Authorization"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.org" headers="*"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.net" headers="*"/>
-       <allow-http-request-headers-from domain="*.openstreetmap.com" headers="*"/>
+       <allow-http-request-headers-from domain="*" headers="*"/>
 </cross-domain-policy>