Closed nashley closed 3 years ago
These endpoints aren't implemented yet. That's why there are no CORS headers returned for them.
Ah, I thought that might be the case.
Would it be useful if I submitted a PR to stub them out and return a ~501
~ ~405
~ 404
with the standard CORS headers?
I'm not sure if a 404 with CORS headers is any better than a 404 without CORS headers?
@Kegsay Any thoughts?
Please do not attach CORS headers for these endpoints. We have no plans to implement some of them.
Background information
3069079e37510dbda59b2b272ce133ef81832d7b
monolith
sqlite
go version
:go1.16 linux/arm
nginx
. Config here.Description
Access-Control-Allow-Headers
andAccess-Control-Allow-Methods
andAccess-Control-Allow-Origin
aren't specified for the following endpoints:/_matrix/client/r0/joined_groups
/_matrix/client/r0/create_group
/_matrix/client/unstable/room_keys/version
/_matrix/client/r0/pushers
/_matrix/client/r0/publicised_groups
/_matrix/client/r0/user/%40username%3Aserver.address/openid/request_token
(substituteusername
andserver.address
)/_matrix/client/unstable/room_keys/version
However, they are specified for seemingly every other endpoint. For example, creating & chatting in rooms works just fine.Steps to reproduce
https://server.address/#/groups
and try to create a groupI'd expect the appropriate CORS headers to be returned for these endpoints like they are for the others. If that's not desired for some reason, I'd expect a documented explanation.