If you think a bug might affect users in the 57 release, please set the correct tracking and status flags for Release Management.

https://verifier.login.persona.org/verify does not set Access-Control-Allow-Origin

RESOLVED INCOMPLETE

Status

Cloud Services
Server: Identity
RESOLVED INCOMPLETE
5 years ago
5 years ago

People

(Reporter: Pierre Rudloff, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

5 years ago
User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:19.0) Gecko/20100101 Firefox/19.0
Build ID: 20130227155931

Steps to reproduce:

 curl -I https://verifier.login.persona.org/verify


Actual results:

No Access-Control-Allow-Origin header.


Expected results:

There should be a Access-Control-Allow-Origin header so it can accessed from JS applications.
(Reporter)

Updated

5 years ago
Duplicate of this bug: 847253
Actually, we don't implement HEAD (curl -I) for that request, only POST. 

Could you refile this at https://github.com/mozilla/browserid/issues?
Status: UNCONFIRMED → RESOLVED
Last Resolved: 5 years ago
Resolution: --- → INCOMPLETE
er, s/refile/restate/.
(Reporter)

Comment 4

5 years ago
Well, I gave an example with HEAD but the header is not there with POST either.
You need to log in before you can comment on or make changes to this bug.