From 9a84b908418403c2120e5b8f4526e82a80ca2f8b Mon Sep 17 00:00:00 2001 From: Sebastian Sylvester Date: Thu, 28 Jul 2016 16:51:23 +0200 Subject: [PATCH] Prevent sending headers if already sent This fix solved the issue as described at https://github.com/ParsePlatform/parse-server/issues/2410 --- src/middlewares.js | 2 ++ 1 file changed, 2 insertions(+) diff --git a/src/middlewares.js b/src/middlewares.js index 4e64c9ee31..7313de9eea 100644 --- a/src/middlewares.js +++ b/src/middlewares.js @@ -206,6 +206,8 @@ function decodeBase64(str) { } var allowCrossDomain = function(req, res, next) { + if(res.headersSent) return next(); + res.header('Access-Control-Allow-Origin', '*'); res.header('Access-Control-Allow-Methods', 'GET,PUT,POST,DELETE,OPTIONS'); res.header('Access-Control-Allow-Headers', 'X-Parse-Master-Key, X-Parse-REST-API-Key, X-Parse-Javascript-Key, X-Parse-Application-Id, X-Parse-Client-Version, X-Parse-Session-Token, X-Requested-With, X-Parse-Revocable-Session, Content-Type');