server : allow CORS request with authorization headers (ggerganov#1850)

Whisper plugin in Obsidian requires an API key which is then sent as an authorization header. However, the presence of an authorization header requires a CORS Preflight, so both the OPTIONS method and the Access-Control-Allow-Headers: authorization must be handled.
WiseSync · Apr 17, 2024 · 5d017a4 · 5d017a4
1 parent 62e8a19
commit 5d017a4
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/examples/server/server.cpp b/examples/server/server.cpp
@@ -541,7 +541,7 @@ int main(int argc, char ** argv) {
     Server svr;
     svr.set_default_headers({{"Server", "whisper.cpp"},
                              {"Access-Control-Allow-Origin", "*"},
-                             {"Access-Control-Allow-Headers", "content-type"}});
+                             {"Access-Control-Allow-Headers", "content-type, authorization"}});
 
     std::string const default_content = R"(
     <html>
@@ -623,6 +623,9 @@ int main(int argc, char ** argv) {
         return false;
     });
 
+    svr.Options(sparams.request_path + "/inference", [&](const Request &req, Response &res){
+    });
+
     svr.Post(sparams.request_path + "/inference", [&](const Request &req, Response &res){
         // acquire whisper model mutex lock
         std::lock_guard<std::mutex> lock(whisper_mutex);