From 255e2611e5c3cfdda76c9da7abdbe5af976044ac Mon Sep 17 00:00:00 2001
From: Simon Willison <simonw@eventbrite.com>
Date: Mon, 23 Oct 2017 19:48:06 -0700
Subject: [PATCH] CORS headers for JSON responses

Access-Control-Allow-Origin: *
---
 app.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app.py b/app.py
index 26af1c98..2f67ad57 100644
--- a/app.py
+++ b/app.py
@@ -89,6 +89,7 @@ class BaseView(HTTPMethodView):
         data = self.data(request, name, hash, **kwargs)
         if as_json:
             r = response.json(data)
+            r.headers['Access-Control-Allow-Origin'] = '*'
         else:
             r = jinja.render(
                 self.template,