[DOCU-2546] Clarify cors configuration Created: 24/Aug/22  Updated: 29/Aug/22  Resolved: 26/Aug/22

Status: Closed
Project: Documentation
Component/s: None
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Neutral
Reporter: Johannes Ballmann Assignee: Martin DrĂ¡pela
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Documentation page URL: https://docs.magnolia-cms.com/product-docs/6.2/Administration/Architecture/Request-processing-and-filters/CORS.html
Reporter Name: Johannes Ballmann
Email: j.ballmann@dotsource.de

 Description   

Out of the box, magnolia creates a CORS configuration like the following:

server: 
  filters: 
    cors: 
      internal: 
        uris: 
          vaadin: 
            patternString: /VAADIN/*
        allowedOrigins: 
          all: '*'
        allowedMethods: 
          all: '*'
        allowedHeaders: 
          all: '*'
        class: info.magnolia.cors.SelfConfiguredCorsFilter
      project: 
        class: info.magnolia.module.site.filters.SiteAwareCorsFilter
      op: OR

The documentation disregards that the default cors filter is a Composite filter and no example fits together with what the User sees immediatly after bootstrapping.


Generated at Mon Feb 12 01:28:04 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.