New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security: Add regular expression support to CORS for easier matching #6891
Comments
@spinscale ping what is the status of this? |
@s1monw waiting for a final test by @rashidkpc but I just created #6923 so maybe you can have a code review, especially to make sure I didnt introduce a performance penalty by trying to compile the regular expression more often than necessary |
clintongormley
changed the title
CORS: Add regular expression support for easier matching
Security: Add regular expression support to CORS for easier matching
Jul 21, 2014
spinscale
added a commit
to spinscale/elasticsearch
that referenced
this issue
Jul 25, 2014
This commit adds regular expression support for the allow-origin header depending on the value of the request `Origin` header. The existing HttpRequestBuilder is also extended to support the OPTIONS HTTP method. Relates elastic#5601 Closes elastic#6891
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In order to support CORS better, we should add an option to also match a regular expression instead of the current options when returning the
Access-Control-Allow-Origin
first.The text was updated successfully, but these errors were encountered: