You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I enabled cors on an ingress. The backend also sent CORS headers. The CORS headers were rejected by the client because the Origin header was incorrect.
What you expected to happen:
I would prefer if it enabling CORS would override / block any CORS headers sent by the upstream.
How to reproduce it (as minimally and precisely as possible):
Setup an HTTP server that sends CORS headers itself, then put it behind ingress-nginx with cors enabled. See whether the Access-Control-Allow-Origin header is sent twice and the cross-origin request fails as a result.
Anything else we need to know:
Probably just need to add a few nginx directives to block CORS headers from the upstream when they are being added by ingress-nginx.
The text was updated successfully, but these errors were encountered:
NGINX Ingress controller version:
quay.io/kubernetes-ingress-controller/nginx-ingress-controller:0.10.2Kubernetes version (use
kubectl version):Environment:
What happened:
I enabled cors on an ingress. The backend also sent CORS headers. The CORS headers were rejected by the client because the Origin header was incorrect.
What you expected to happen:
I would prefer if it enabling CORS would override / block any CORS headers sent by the upstream.
How to reproduce it (as minimally and precisely as possible):
Setup an HTTP server that sends CORS headers itself, then put it behind ingress-nginx with cors enabled. See whether the Access-Control-Allow-Origin header is sent twice and the cross-origin request fails as a result.
Anything else we need to know:
Probably just need to add a few nginx directives to block CORS headers from the upstream when they are being added by ingress-nginx.
The text was updated successfully, but these errors were encountered: