Uploaded image for project: 'las2peer'
  1. las2peer
  2. LAS-164

WebConnector does not include Headers in CORS.

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: v0.3
    • Fix Version/s: v0.3
    • Component/s: WebConnector
    • Labels:
      None

      Description

      The CORS Headers in the response to CORS requests do not include the "Access-Control-Allow-Headers" field.
      The WebConnector should answer OPTIONS requests with Request Headers field, i.e.
      "Access-Control-Request-Headers:Accept, Content-Type"
      with a corresponding
      "Access-Control-Allow-Headers: Accept, Content-Type"
      to allow the following request.
      To allow ALL requests in any case, the Connector could include the line
      "Access-Control-Request-Headers:Origin, X-Requested-With, Content-Type, Accept"

      (On a side note, by convention HTTP Header fields should be spelled with Capitalized words, so "Server-Name" instead of "Server-name", "Access-Control-Allow-Origin" instead of "access-control-allow-origin", etc.)

        Attachments

          Activity

            People

            • Assignee:
              gordin Andreas Guth
              Reporter:
              gordin Andreas Guth
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Fix Release Date:
                18/May/15