Uploaded image for project: 'Magnolia'
  1. Magnolia
  2. MAGNOLIA-8563

CorsResponseFilter may add additional value for Access-Control-Allow-Origin causing request errors

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Neutral
    • 6.3.0, 6.2.26
    • None
    • None

    Description

      Steps to reproduce

      1. Add AddHeadersFilter before cors filter
      2. Add Access-Control-Allow-Origin header with some value
      3. Set headers in the cors filter or in site
      4. Make request to trigger cors error

      Expected results

      1. No error in making the request

      Actual results

      1. Error because multiple values are set for Access-Control-Allow-Origin

      Workaround

      Development notes

      1. Change addHeader to setHeader in CorsResponseFilter#addStandardHeaders for Access-Control-Allow-Origin

      Checklists

        Acceptance criteria

        Attachments

          Activity

            People

              mstrucka Marek Strucka
              jsimak Jaroslav Simak
              DeveloperX
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Checklists

                  Bug DoR
                  Task DoD