Pass through CORS request headers

reprozip-news-apps / reprozip-web

ReproZip for the Preservation of Web Applications

https://reprozip-web.readthedocs.io/en/latest/

BSD 3-Clause "New" or "Revised" License

17 stars 2 forks source link

Pass through CORS request headers #7

Closed remram44 closed 5 years ago

remram44 commented 5 years ago

It is common for Access-Control response headers to only be set if Origin is set in request headers. For the CORS mechanism to work, that Origin header has to be passed through.

It would be good to find a server that is configured this way, https://interactive.guim.co.uk/ seems to now set Access-Control headers anyway.

remram44 commented 5 years ago

We could also make our own server that does this as a test case.

quoideneuf commented 5 years ago

@remram44 - sorry, maybe you meant to leave this open till we got a test case?

remram44 commented 5 years ago

We can test later, this shouldn't break anything.

quoideneuf commented 5 years ago

👍