Uploaded image for project: 'Webservices REST Module'
  1. Webservices REST Module
  2. RESTWS-382

Access-Control-Allow-Origin in response headers

    Details

    • Type: New Feature
    • Status: Ready for Work
    • Priority: Could
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:
      None
    • Complexity:
      High

      Description

      REST calls to a server running this module will sometimes need to come from pages served by other servers. As an administrator, I want to be able to specify which other servers are allowed to render pages requesting REST resources from another server. These IPs / FQDNs should be configured in the module's settings page and used in a new filter for the ws servlet (similar to how the AuthorizationFilter works now).

      From Saptarshi Purkayastha's comments:

      Infact might be useful to implement to how the CorsFilter library does it. i.e. configurable - custom headers, max age, support credentials etc.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                gayanw Gayan Weerakutti [X] (Inactive)
                Reporter:
                jeremy Jeremy Keiper
              • Votes:
                0 Vote for this issue
                Watchers:
                7 Start watching this issue

                Dates

                • Created:
                  Updated:

                  Time Tracking

                  Estimated:
                  Original Estimate - 3 days
                  3d
                  Remaining:
                  Time Spent - 2 days, 4 hours Remaining Estimate - 4 hours
                  4h
                  Logged:
                  Time Spent - 2 days, 4 hours Remaining Estimate - 4 hours
                  2d 4h