Hacker News new | ask | show | jobs
by sepbot 2575 days ago
The requests should fail unless the servers you are running allow CORS as per the headers.
1 comments
shakna 2575 days ago
There's half a dozen that are.
link
ypkuby 2575 days ago
Do you have any locked down policy on them though? I assume this would only work if you gave blanket access.

I noticed in my tests it found one on port 3000 with blanket access, but didn't see one on port 9999 with restricted access( policy => allow from *.mydomains )

link
shakna 2575 days ago
Yes. I'm terrible and have them set to allow all domains, and all methods.
link
dillonmckay 2575 days ago
Maybe your browsers are up-to-date?
link