closes #168

catmando · catmando · commit 5e9cc050d05b · 2019-04-15T17:24:07.000-04:00
diff --git a/ruby/hyper-operation/lib/hyper-operation/server_op.rb b/ruby/hyper-operation/lib/hyper-operation/server_op.rb
@@ -14,7 +14,7 @@ def run(*args)
             Hyperstack::HTTP.post(
               "#{`window.HyperstackEnginePath`}/execute_remote",
               payload: {json: {operation: name, params: hash}.to_json},
-              headers: {'X-CSRF-Token' => Hyperstack::ClientDrivers.opts[:form_authenticity_token] }
+              headers: headers.merge('X-CSRF-Token' => Hyperstack::ClientDrivers.opts[:form_authenticity_token])
               )
             .then do |response|
               deserialize_response response.json[:response]
@@ -129,6 +129,10 @@ def remote(path, *args)
         promise.reject e
       end
 
+      def headers
+        {}
+      end
+
       def serialize_params(hash)
         hash
       end
diff --git a/ruby/hyper-operation/spec/hyper-operation/server_op_spec.rb b/ruby/hyper-operation/spec/hyper-operation/server_op_spec.rb
@@ -347,5 +347,29 @@ def self.deserialize_dispatch(hash)
       end.to eq(6)
       expect(page).to have_content("The server says 'hello serialized deserialized'!")
     end
+
+    it 'can attach custom headers' do
+      isomorphic do
+        class Operation < Hyperstack::ControllerOp
+
+          def self.headers # this runs on the client and adds custom headers
+            { Authorization: '1234' }
+          end
+
+          # return the value of the Authorization header
+          # rails automatically upcases all the keys
+
+          step { request.headers['AUTHORIZATION'] }
+        end
+      end
+      stub_const "OperationPolicy", Class.new
+      OperationPolicy.always_allow_connection
+      mount 'Test'
+
+      expect_promise do
+        Operation.run
+      end.to eq('1234')
+    end
+
   end
 end
