You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@isis.apache.org by "ASF subversion and git services (Jira)" <ji...@apache.org> on 2020/11/08 12:07:00 UTC

[jira] [Commented] (ISIS-2454) CORS Filter not in FilterChain?

    [ https://issues.apache.org/jira/browse/ISIS-2454?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17227981#comment-17227981 ] 

ASF subversion and git services commented on ISIS-2454:
-------------------------------------------------------

Commit 3b5d87e0bf2fe698aeeb59a75b6882b052385f43 in isis's branch refs/heads/ISIS-2454 from Jörg Rade
[ https://gitbox.apache.org/repos/asf?p=isis.git;h=3b5d87e ]

ISIS-2454 test if cors filter is in filterchain (and credentials are checked) 2/n
gradle change reverted


> CORS Filter not in FilterChain?
> -------------------------------
>
>                 Key: ISIS-2454
>                 URL: https://issues.apache.org/jira/browse/ISIS-2454
>             Project: Isis
>          Issue Type: Bug
>          Components: Isis Viewer RO
>    Affects Versions: 2.0.0-M4
>         Environment: Windows 10
>            Reporter: Jörg Rade
>            Assignee: Jörg Rade
>            Priority: Major
>         Attachments: cors.log
>
>
> *Given:* demo-wicket started from IntelliJ with Spring Boot Configuration, JDK11, Maven Goal 'Demo- Wicket: clean install'
> *When:*  curl --user sven:pass -v -H "Access-Control-Request-Method: GET" -H "Origin: [http://localhost:3000|http://localhost:3000/]"   -X OPTIONS [http://localhost:8080/restful/user]
> *Actual:* 
> *   Trying 127.0.0.1...
> * TCP_NODELAY set
> * Connected to localhost (127.0.0.1) port 8080 (#0)
> * Server auth using Basic with user 'sven'
> > OPTIONS /restful/user HTTP/1.1
> > Host: localhost:8080
> > Authorization: Basic c3ZlbjpwYXNz
> > User-Agent: curl/7.55.1
> > Accept: */*
> > Access-Control-Request-Method: GET
> > Origin: [http://localhost:3000|http://localhost:3000/]
> >
> < HTTP/1.1 500
> < Set-Cookie: rememberMe=deleteMe; Path=/; Max-Age=0; Expires=Sun, 25-Oct-2020 10:13:42 GMT
> < Vary: Origin
> < Vary: Access-Control-Request-Method
> < Vary: Access-Control-Request-Headers
> < Access-Control-Allow-Origin: [http://localhost:3000|http://localhost:3000/]
> < Access-Control-Allow-Methods: GET
> < Access-Control-Allow-Credentials: true
> < Allow: GET, HEAD, POST, PUT, DELETE, TRACE, OPTIONS, PATCH
> < Content-Length: 0
> < Date: Mon, 26 Oct 2020 10:13:42 GMT
> < Connection: close
> <
> * Closing connection 0
> *Expected:* 
> HTTP 200, Content-Length > 0



--
This message was sent by Atlassian Jira
(v8.3.4#803005)