Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Serve code for node.mytake.org from https://mytake.org #426

Open
nedtwigg opened this issue Oct 30, 2020 · 0 comments
Open

Serve code for node.mytake.org from https://mytake.org #426

nedtwigg opened this issue Oct 30, 2020 · 0 comments
Labels
backend security/abuse

Comments

@nedtwigg
Copy link
Collaborator

nedtwigg commented Oct 30, 2020
edited
Loading

We need very permissive CORS headers on both /api/static/fact and /api/static/search, because the code they are running comes from localhost, but it needs to hit those two APIs. But actually, that code could just as easily come from /api/node-server, and then we wouldn't need that CORS header. I don't think this is super important, but wanted to document it for the future.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
backend security/abuse
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@nedtwigg