CORS GET request with no special headers fails to follow redirect

UNCONFIRMED
Unassigned

Status

()

Core
Networking: HTTP
P3
normal
UNCONFIRMED
3 years ago
4 months ago

People

(Reporter: fiatjaf, Unassigned)

Tracking

35 Branch
x86
Linux
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [necko-backlog], URL)

(Reporter)

Description

3 years ago
User Agent: Mozilla/5.0 (X11; Ubuntu; Linux i686; rv:35.0) Gecko/20100101 Firefox/35.0
Build ID: 20141110194624

Steps to reproduce:

1. Go to http://fiatjaf.alhur.es/scrapbook/
2. Wait for the page to load


Actual results:

Firefox sends a preflight (OPTIONS) request to https://fiatjaf.couchappy.com/scrapbook/_design/scrapbook/_rewrite, then the actual request, and gets back a 302 redirect, which it does not follow and fails with an unrelated error: "Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://fiatjaf.couchappy.com/scrapbook/_design/scrapbook/_rewrite. This can be fixed by moving the resource to the same domain or enabling CORS."

The page shows a blank form and nothing below it.


Expected results:

The browser shouldn't have sent the preflight request, as the main request was a simple GET with no special headers, then it should had followed the redirect.

The page should show a list of comments below the blank form.
(Reporter)

Updated

3 years ago
Jason, anything we already know of?
Whiteboard: [necko-backlog]

Comment 2

a year ago
The page became a 404.

fiatjaf, any chance you can give us a new demo or turn it into a test: https://github.com/w3c/web-platform-tests?
You need to log in before you can comment on or make changes to this bug.