Insecure cross site request handling #9

Open

Assignees

Labels

Milestone

Server Enhancement

opened

on Nov 23, 2020

Server always set header
Access-Control-Allow-Origin: '*' for all preflight OPTIONS requests
this approach seems insecure.

Metadata

Assignees

irusland

Labels

Projects

No projects

Milestone

Server Enhancement

Relationships

None yet

Development

No branches or pull requests