[APLO-188] Add "Access-Control-Allow-Methods" and "Access-Control-Allow-Headers" to CORS requests - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.2
Fix Version/s: 1.3
Component/s: apollo-web
Labels:
None
Environment:
Debian Wheezy

Description

Request header field Authorization is not allowed by Access-Control-Allow-Headers.
--------------------------------------------------------------------------------
Request Headers:

OPTIONS /broker.json HTTP/1.1
Host: 192.168.1.2:61680
Connection: keep-alive
Cache-Control: max-age=0
Access-Control-Request-Method: GET
Origin: http://192.168.1.1
Pragma: no-cache
Access-Control-Request-Headers: origin, authorization, accept
Accept: /
--------------------------------------------------------------------------------
Required Response Headers:

Access-Control-Allow-Origin
Access-Control-Allow-Methods
Access-Control-Allow-Headers

--------------------------------------------------------------------------------
http://www.html5rocks.com/en/tutorials/cors/

Attachments

Activity

People

Assignee:: Hiram R. Chirino

Reporter:: Torben Fitschen

Votes:: 1 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 11/Apr/12 13:22

Updated:: 23/Apr/12 15:18

Resolved:: 18/Apr/12 12:34