Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cors: return local reply when preflight origin does not match allowed origins #33051

Merged
merged 3 commits into from
Mar 22, 2024
Merged

cors: return local reply when preflight origin does not match allowed origins #33051

merged 3 commits into from
Mar 22, 2024

Conversation

cpakulski
Copy link
Contributor

Commit Message:
cors: return local reply when preflight origin does not match allowed origins
Additional Description:
When CORS preflight's origin does not match configured allowed origins, the filter continued iteration. The preflight reached the upstream server. Some users expressed interest in generating local reply in such situation. Based on CORS specs, locally generated reply should not contain access-control-allow-origin response header. This behaviour is controlled by API and default setting is to forward the preflight to upstream.
Risk Level: Low
Testing: Added unit/integration tests.
Docs Changes: Yes
Release Notes: Yes
Platform Specific Features: No
Fixes #14233

@cpakulski cpakulski requested a review from wbpcode as a code owner March 21, 2024 19:27
@repokitteh-read-only RepoKitteh - Read Only
Copy link

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to (api/envoy/|docs/root/api-docs/).
envoyproxy/api-shepherds assignee is @mattklein123
CC @envoyproxy/api-watchers: FYI only for changes made to (api/envoy/|docs/root/api-docs/).

🐱

Caused by: #33051 was opened by cpakulski.

see: more, trace.

@mattklein123 mattklein123 merged commit 5f58f9a into envoyproxy:main Mar 22, 2024
54 checks passed
@cpakulski cpakulski deleted the issue/14233 branch March 22, 2024 16:13
This was referenced Mar 24, 2024
Closed
Merged
Closed
@cpakulski cpakulski mentioned this pull request Mar 26, 2024
Merged
@zirain zirain mentioned this pull request Apr 13, 2024
Merged
@zirain zirain mentioned this pull request Apr 23, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mattklein123 mattklein123 mattklein123 approved these changes

@wbpcode wbpcode Awaiting requested review from wbpcode wbpcode is a code owner

Assignees

@mattklein123 mattklein123

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

CORS: The preflight request is forwarded to the upstream if the origin is not allowed.
2 participants
@cpakulski @mattklein123