-
-
Notifications
You must be signed in to change notification settings - Fork 4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allows cors on ingest.sentry.io #49535
Comments
Assigning to @getsentry/support for routing, due by Wednesday, May 10th at 5:00 pm (sfo). ⏲️ |
I think we need relay to return Access-Control-Allow-Origin: * for this endpoint. |
Looks like a problem with the |
@jjbayer Damn I thought we served this over relay. Routing to sentry then. |
seems like we need to add
|
Failed to route for Product Area: Other. Defaulting to @getsentry/open-source for triage, due by Thursday, May 25th at 12:09 pm (sea). ⏲️ |
Routing to @getsentry/product-owners-user-feedback for triage, due by Friday, May 26th at 9:58 am (sfo). ⏲️ |
Hello, do you have any updates regarding this issue? Thank you! |
Just opened a PR to fix this #51138 |
Thank you a lot for the work! By any chance, do you know when this change will be live? |
@Amatewasu do you mind sharing the full URL inside the first error? I am a bit weirded out because we are setting the |
@Amatewasu another question. Is this happening inside an iframe? |
Sure, I have sent you an email.
It looks like all the
It is not happening inside an iframe. :) |
The full URL is: |
"@sentry/angular-ivy": "^7.59.2", this was testing from localhost i think. (http to https). |
@lforst Our self-hosted sentry is on version 23.3.1. If I remember correctly, we can't upgrade to the next version without upgrading our postgres database before |
@lforst I am experiencing the same CORS error with the Normal sentry reporting is working, but CORS errors occur when attempting to call Details:
It looks like the failed request is a 302, which doesn't have an |
UPDATE – @lforst I think the issue is indeed the redirect response missing the |
Reopening since this seems to be ongoing. |
Hi, there is currently a deploy to Sentry going out that will attach a In my test app, this finally fixed the issue. Feel free to let me know in case this still seems to be a problem. |
@lforst The issue is fixed in my app. Thanks a lot! |
@lforst This has fixed the CORS errors for me, but I now get:
… I believe because of the It looks like that has been previously reported here: getsentry/sentry-javascript#1439 |
@timkelty this seems to be a different problem. Do you mind creating a different issue with reproduction steps? Thank you! |
@lforst I'm a bit confused.
And now i'm faced with this CORS error.
Is my only solution to ALSO upgrade my Sentry server? |
@HansAarneLiblik yes |
Environment
SaaS (https://sentry.io/)
Steps to Reproduce
Cross-Origin-Opener-Policy: same-origin
andCross-Origin-Embedder-Policy: require-corp
)Sentry.showReportDialog
Access-Control-Allow-Origin: *
for example)Expected Result
Actual Result
The request is blocked by the browser:
"GET https://o1127159.ingest.sentry.io/api/embed/error-page/?dsn=https://8f845bb769e24d9eb37a25bfd63b9c96@o1127159.ingest.sentry.io/6417371&eventId=71e2f933bbb84e07828a4e6ed073ca34&title=Report%20an%20issue&name=NAME OF THE USER*&email=EMAIL OF THE USERnet::ERR_BLOCKED_BY_RESPONSE.NotSameOriginAfterDefaultedToSameOriginByCoep 302"
For your information, following the previously mentioned error, I tried to hijack by inserting directly the Sentry's loaded script with the following piece of code:
but the request is also blocked by the browser:
Access to script at 'https://sentry.io/api/embed/error-page/?dsn=https://8f845bb769e24d9eb37a25bfd63b9c96@o1127159.ingest.sentry.io/6417371&eventId=b8b588b0bb014590adfb6f93de24550f&title=Report%20an%20issue&name=undefined&email=undefined' from origin 'http://localhost:3000' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. GET https://sentry.io/api/embed/error-page/?dsn=https://8f845bb769e24d9eb37a25bfd63b9c96@o1127159.ingest.sentry.io/6417371&eventId=b8b588b0bb014590adfb6f93de24550f&title=Report%20an%20issue&name=undefined&email=undefined net::ERR_FAILED 200 (OK)
Product Area
User Feedback
Link
(can be provided on request but is not publicly available)
DSN
https://8f845bb769e24d9eb37a25bfd63b9c96@o1127159.ingest.sentry.io/6417371
Version
No response
The text was updated successfully, but these errors were encountered: