Skip to main content

Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

    •  
      request #7841 Pagination headers cannot be read in CORS request
    Actions
    Infos
    #7841
    Nicolas Terray (nterray)
    2015-02-05 15:32
    2015-02-04 23:13
    7848
    Details
    Pagination headers cannot be read in CORS request

    TL;DR: A javascript client cannont read our X-PAGINATION-* headers if it is not on the same domain of the requested Tuleap server.

    On non-CORS requests, all headers are available through XMLHttpRequest. However, when doing a CORS request, by default only simple response headers are readable with XMLHttpRequest (Content-Type, Last-modified, Content-Language, Cache-Control, Expires, Pragma).

    As X-PAGINATION-SIZE is obviously not part of the simple response headers list, we need to enable it by using the Access-Control-Expose-Headers:

    Access-Control-Expose-Headers: X-PAGINATION-SIZE

    This blocks people to build tools based on Tuleap REST API.

    References: 
    http://www.w3.org/TR/cors/#terminology 

    http://www.w3.org/TR/cors/#access-control-expose-headers-response-header 

    https://developer.mozilla.org/en-US/docs/Web/HTTP/Access_control_CORS#Access-Control-Expose-Headers

    API
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Empty
    Closed
    2015-02-05
    Attachments
    Artifact links
    Empty
    By Nicolas Terray (nterray)
    (714 B)
    ajax.html
    References
    Referencing request #7841

    Artifact Tracker v5

    rel #7843 7.11

    Git commit

    tuleap/tuleap/stable

    Merge commit 'refs/changes/06/3606/1' of ssh://gerrit.tuleap.net:29418/tuleap into HEAD aeda3718b3
    User avatar Yannis ROSSETTO (rossettoy) , 2015-02-05 15:31
    request #7841: Pagination headers cannot be read in CORS request 6b14dad50c
    User avatar Nicolas Terray (nterray) , 2015-02-05 09:43
    Referenced by request #7841

    Other

    gerrit #3606
    Display settings

    Follow-ups

    User avatar
    Yannis ROSSETTO (rossettoy)2015-02-05 15:32
    Merged in Tuleap 7.10.99.5
    • Status changed from Under review to Closed
    • Close date set to 2015-02-05
    User avatar
    Nicolas Terray (nterray)2015-02-04 23:14
    • Original Submission
      Something went wrong, the follow up content couldn't be loaded
      Only formatting have been changed, you should switch to markup to see the changes