[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [donate/master] Use wildcard for Access-Control-Allow-Origin

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [donate/master] Use wildcard for Access-Control-Allow-Origin
From: peterh@xxxxxxxxxxxxxx
Date: Tue, 11 May 2021 21:17:51 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 11 May 2021 17:18:31 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Peter Haight <peterh@xxxxxxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

commit 9a7940ba9994789293b44c64632822cc849c918c
Author: Peter Haight <peterh@xxxxxxxxxxxxxxx>
Date:   Wed Oct 21 10:26:04 2020 -0700

    Use wildcard for Access-Control-Allow-Origin
    
    The newsletter site captcha isn't working because it needs this header
    set to newsletter.torproject.org and this header doesn't allow multiple
    origins. We'll just set it to wildcard for now and figure out if we can
    do something else.
---
 src/AccessControlMiddleware.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/AccessControlMiddleware.php b/src/AccessControlMiddleware.php
index d900fa63..d5b7381d 100644
--- a/src/AccessControlMiddleware.php
+++ b/src/AccessControlMiddleware.php
@@ -4,7 +4,7 @@ namespace Tor;
 
 class AccessControlMiddleware {
   public function __invoke($request, $response, $next) {
-    $response = $response->withHeader('Access-Control-Allow-Origin', $this->torSiteBaseUrl);
+    $response = $response->withHeader('Access-Control-Allow-Origin', '*');
     $response = $response->withHeader('Access-Control-Allow-Credentials', 'true');
     $response = $response->withHeader('Access-Control-Allow-Headers', 'Content-Type');
     return $next($request, $response);



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [donate/master] Fixed Uncaught Exception Error: "Class 'Tor\Uri' not found"
Next by Author: [tor-commits] [tor-browser/tor-browser-78.11.0esr-10.0-1] Bug 32092: Fix Tor Browser Support link in preferences
Previous by thread: [tor-commits] [donate/master] Fixed notice with reset in subscription-request
Next by thread: [tor-commits] [donate/master] Limit matched amount in counter to first 100k donated
Index(es):
- Author
- Thread