v0.3.1

davidpdrsn released this 28 Apr 11:39

tower-http-0.3.1

8f4d27c

Fixed

cors: Only send a single origin in Access-Control-Allow-Origin header when a list of
allowed origins is configured (the previous behavior of sending a comma-separated list like for
allowed methods and allowed headers is not allowed by any standard)

Assets 2