[HDDS-5120] Access-Control-Allow-Origin header must be set in all the responses from http endpoints - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Abandoned
Affects Version/s: 1.1.0
Fix Version/s: None
Component/s: Security, website
Labels:
None

Target Version/s:

1.4.0

Description

To prevent CORS attacks, all the http endpoints exposed by Ozone should include Access-Control-Allow-Origin header in the response pointing to a trusted domain.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Vivek Ratnavel Subramanian

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 19/Apr/21 18:51

Updated:: 04/Aug/23 07:18

Resolved:: 04/Aug/23 07:18