OPTIONS requests to /api/* return HTTP 500, causing CORS failures #25775
Labels
OKR : Customer Success
Owned by Arno
OKR : Customer Support
Owned by Scott
QA : Approved
Release : 22.03.9
Included in LTS patch release 22.03.9
Release : 23.01.5
Included in LTS patch release 23.01.5
Release : 23.09.6
Release Template Builder
Team : Bug Fixers
Type : Defect
Parent Issue
No response
Problem Statement
EDIT: this impacts other apis, not just
/api/content
These return HTTP 500:
but
/api/v1/graphql
is ok.OPTIONS requests to
/api/content/*
return a HTTP 500 error.Browsers making client-side fetch api and XHR requests may enforce CORS restrictions, which require a valid server response to these OPTIONS requests. This means it is not currently possible to make client-side javascript requests to
/api/content/*
from web browsers.See the Slack link below for more details
Steps to Reproduce
curl -X OPTIONS --head https://demo.dotcms.com/api/content/id/574f0aec-185a-4160-9c17-6d037b298318/
Acceptance Criteria
OPTIONS requests to
/api/content/*
return proper CORS headersdotCMS Version
22.06 LTS and later - not sure which agile release first does this
the issue is not present in 21.06 LTS
Proposed Objective
Core Features
Proposed Priority
Priority 1 - Show Stopper
External Links... Slack Conversations, Support Tickets, Figma Designs, etc.
Cloud customer reported this issue https://dotcms.zendesk.com/agent/tickets/112877
See this Slack post for more details https://dotcms.slack.com/archives/C028Z3R2D/p1691775252548639
Assumptions & Initiation Needs
No response
Quality Assurance Notes & Workarounds
No response
Sub-Tasks & Estimates
No response
The text was updated successfully, but these errors were encountered: