jowj/matrix-docker-ansible-deploy
1
0
Fork 0
forked from mirrors/matrix-docker-ansible-deploy
Code Issues Pull Requests Releases Wiki Activity
28c255539c
matrix-docker-ansible-deploy/roles/matrix-nginx-proxy
History
Alexandros Afentoulis 28c255539c matrix-nginx-proxy: specify Origin header, comply with CORS 
Self-checks against the .well-known URIs look for the HTTP header
"Access-Control-Allow-Origin" indicating that the remode endpoint
supports CORS. But the remote server is not required to include
said header in the response if the HTTP request does not include
the "Origin" header. This is in accordance with the specification
[1] stating: 'A CORS request is an HTTP request that includes an
"Origin" header.'

This is in fact true for Gitlab pages hosting and that's why the
issue was identified.

Let's specify "Origin" header in the respective uri tasks performing
the HTTP request and ensure a CORS request.

[1] https://fetch.spec.whatwg.org/#http-requests
2021-03-15 14:24:55 +02:00
..
defaults Added nginx proxy worker configuration to template and defaults 2021-03-02 11:30:09 +01:00
tasks matrix-nginx-proxy: specify Origin header, comply with CORS 2021-03-15 14:24:55 +02:00
templates Upgrade Synapse (1.28.0 -> 1.29.0) 2021-03-08 17:24:09 +02:00
vars Replace cronjobs with systemd timers 2021-01-14 23:35:50 +02:00