chore: Release v1.3.0-dev.6 [skip ci]

# [1.3.0-dev.6](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.5...v1.3.0-dev.6) (2024-10-02) ### Bug Fixes * Expose www-authenticate header to JS ([9ed724e](9ed724e161)) ### Features * Only allow requests from HTTPs ([a6d7da1](a6d7da1205))
fix: Expose www-authenticate header to JS
2026-01-12 06:16:19 +00:00 · 2024-10-02 04:59:16 +00:00 · 2024-10-02 06:57:20 +02:00 · 2024-10-02 06:57:19 +02:00 · 2024-10-02 06:57:19 +02:00 · 2024-09-30 23:21:46 +02:00
7 changed files with 2470 additions and 1232 deletions
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -12,7 +12,7 @@ jobs:
    name: Release
    runs-on: ubuntu-latest
    permissions:
-      contents: read
+      contents: write
      packages: write
    steps:
      - name: Checkout
@@ -60,7 +60,7 @@ jobs:
          DOCKER_REGISTRY_USER: ${{ github.actor }}
          DOCKER_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
          GITHUB_ACTOR: ${{ github.actor }}
-          GITHUB_TOKEN: ${{ secrets.REPOSITORY_PUSH_ACCESS }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        run: npm exec semantic-release

      - name: Set Portainer stack webhook URL based on branch
--- a/.releaserc
+++ b/.releaserc
@@ -21,10 +21,10 @@
      "@semantic-release/git",
      {
        "assets": [
-          "README.md",
          "CHANGELOG.md",
          "gradle.properties"
-        ]
+        ],
+        "message": "chore: Release v${nextRelease.version} [skip ci]\n\n${nextRelease.notes}"
      }
    ],
    [
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,29 @@
+# [1.3.0-dev.6](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.5...v1.3.0-dev.6) (2024-10-02)
+
+
+### Bug Fixes
+
+* Expose www-authenticate header to JS ([9ed724e](https://github.com/ReVanced/revanced-api/commit/9ed724e161f9029967f67e4c2066f2fdf7be0a27))
+
+
+### Features
+
+* Only allow requests from HTTPs ([a6d7da1](https://github.com/ReVanced/revanced-api/commit/a6d7da1205ef7bc23eba0b1fca2480a4327def19))
+
+# [1.3.0-dev.5](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.4...v1.3.0-dev.5) (2024-09-30)
+
+
+### Bug Fixes
+
+* Allow more necessary HTTP methods for CORS ([080e2e5](https://github.com/ReVanced/revanced-api/commit/080e2e582cb8ea97421c402a4cb82414e11fb1cf))
+
+# [1.3.0-dev.4](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.3...v1.3.0-dev.4) (2024-09-29)
+
+
+### Bug Fixes
+
+* Configure CORS properly to allow authorization and content-type header ([6442757](https://github.com/ReVanced/revanced-api/commit/6442757927c0307c01b2793858d25df7e3fca122))
+
 # [1.3.0-dev.3](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.2...v1.3.0-dev.3) (2024-09-29)


--- a/gradle.properties
+++ b/gradle.properties
@@ -1,4 +1,4 @@
 org.gradle.parallel = true
 org.gradle.caching = true
 kotlin.code.style = official
-version = 1.3.0-dev.3
+version = 1.3.0-dev.6
--- a/package-lock.json
+++ b/package-lock.json
--- a/package.json
+++ b/package.json
@@ -4,7 +4,7 @@
    "@saithodev/semantic-release-backmerge": "^4.0.1",
    "@semantic-release/changelog": "^6.0.3",
    "@semantic-release/git": "^10.0.1",
-    "gradle-semantic-release-plugin": "^1.9.2",
-    "semantic-release": "^24.0.0"
+    "gradle-semantic-release-plugin": "^1.10.1",
+    "semantic-release": "^24.1.2"
  }
 }
--- a/src/main/kotlin/app/revanced/api/configuration/HTTP.kt
+++ b/src/main/kotlin/app/revanced/api/configuration/HTTP.kt
@@ -1,6 +1,7 @@
 package app.revanced.api.configuration

 import app.revanced.api.configuration.repository.ConfigurationRepository
+import io.ktor.http.*
 import io.ktor.server.application.*
 import io.ktor.server.plugins.*
 import io.ktor.server.plugins.cors.routing.*
@@ -13,11 +14,16 @@ fun Application.configureHTTP() {
    val configurationRepository = get<ConfigurationRepository>()

    install(CORS) {
+        HttpMethod.DefaultMethods.minus(HttpMethod.Options).forEach(::allowMethod)
+
+        allowHeader(HttpHeaders.ContentType)
+        allowHeader(HttpHeaders.Authorization)
+        exposeHeader(HttpHeaders.WWWAuthenticate)
+
+        allowCredentials = true
+
        configurationRepository.corsAllowedHosts.forEach { host ->
-            allowHost(
-                host = host,
-                schemes = listOf("http", "https"),
-            )
+            allowHost(host = host, schemes = listOf("https"))
        }
    }
Author	SHA1	Message	Date
semantic-release-bot	06098415f1	chore: Release v1.3.0-dev.6 [skip ci] # [1.3.0-dev.6](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.5...v1.3.0-dev.6) (2024-10-02) ### Bug Fixes * Expose www-authenticate header to JS ([`9ed724e`](`9ed724e161`)) ### Features * Only allow requests from HTTPs ([`a6d7da1`](`a6d7da1205`))	2024-10-02 04:59:16 +00:00
oSumAtrIX	9ed724e161	fix: Expose www-authenticate header to JS	2024-10-02 06:57:20 +02:00
oSumAtrIX	a6d7da1205	feat: Only allow requests from HTTPs	2024-10-02 06:57:19 +02:00
oSumAtrIX	87174eadd6	ci: Use permissions and regular GitHub token instead of PAT	2024-10-02 06:57:19 +02:00
oSumAtrIX	fde2857915	build(Needs bump): Update dependencies	2024-09-30 23:21:46 +02:00
oSumAtrIX	fae8cb6b23	ci: Adjust release commit message	2024-09-30 22:34:25 +02:00
semantic-release-bot	a754159800	chore(release): 1.3.0-dev.5 [skip ci] # [1.3.0-dev.5](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.4...v1.3.0-dev.5) (2024-09-30) ### Bug Fixes * Allow more necessary HTTP methods for CORS ([`080e2e5`](`080e2e582c`))	2024-09-30 15:35:42 +00:00
oSumAtrIX	080e2e582c	fix: Allow more necessary HTTP methods for CORS	2024-09-30 17:33:15 +02:00
semantic-release-bot	8ff1bbd41f	chore(release): 1.3.0-dev.4 [skip ci] # [1.3.0-dev.4](https://github.com/ReVanced/revanced-api/compare/v1.3.0-dev.3...v1.3.0-dev.4) (2024-09-29) ### Bug Fixes * Configure CORS properly to allow authorization and content-type header ([`6442757`](`6442757927`))	2024-09-29 23:29:17 +00:00
oSumAtrIX	6442757927	fix: Configure CORS properly to allow authorization and content-type header	2024-09-30 01:27:24 +02:00