API doesn't include CORS headers in response to GET method request #2279

MattKobayashi · 2024-03-14T02:09:25Z

Describe the Bug

The Tautulli API doesn't include CORS headers (Access-Control-Allow-Origin, etc.) when responding to a GET method request received via Cloudflare tunnel using Service Tokens. OPTIONS method requests are not affected.

Steps to Reproduce

Configure Tautulli and Cloudflare tunnel for reverse proxy.
Configure Cloudflare Access application with appropriate policies and CORS settings.
Make an API call using service tokens for authentication.

Expected Behavior

Tautulli should include CORS headers in response to all method requests, including GET.

Screenshots

Relevant Settings

Cloudflare Access CORS settings:

Tautulli Version

v2.13.4

Git Branch

master

Git Commit Hash

v2.13.4

Platform and Version

[Docker] Linux 6.6.21-0-lts (#1-Alpine SMP PREEMPT_DYNAMIC Thu, 07 Mar 2024 10:55:08 +0000 - Alpine Linux 3.19.1)

Python Version

3.11.8 (main, Feb 19 2024, 17:01:17) [GCC 13.2.1 20231014]

Browser and Version

Chrome 122.0.6261.129 (Official Build) (arm64)

Link to Logs

https://gist.github.com/MattKobayashi/00e0477fa853047535c6b2fd4ee0cb5f

The text was updated successfully, but these errors were encountered:

MattKobayashi added status:awaiting-triage type:bug labels Mar 14, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

API doesn't include CORS headers in response to GET method request #2279

API doesn't include CORS headers in response to GET method request #2279

MattKobayashi commented Mar 14, 2024

API doesn't include CORS headers in response to GET method request #2279

API doesn't include CORS headers in response to GET method request #2279

Comments

MattKobayashi commented Mar 14, 2024

Describe the Bug

Steps to Reproduce

Expected Behavior

Screenshots

Relevant Settings

Tautulli Version

Git Branch

Git Commit Hash

Platform and Version

Python Version

Browser and Version

Link to Logs