Y
Hacker News
new
|
ask
|
show
|
jobs
by
bastawhiz
71 days ago
It's not a client side configuration issue. You're not protecting against software the user has installed, you're protecting from arbitrary origins hitting the hostname. That's literally the exact reason cors exists.