Fixes #23135 - Allow cross origin request for /nodeinfo/2.0 API #27413
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
As noted in #23135, missing CORS headers on
/nodeinfo/2.0
endpoint are an issue for any web pages supposed to work with different Fediverse applications. While the proper approach to determine the software running on a Fediverse instance would be downloading/.well-known/nodeinfo
and then/nodeinfo/2.0
, the latter currently fails for Mastodon. I’ve hit this issue myself when implementing “Share to Fediverse” functionality.Adding CORS headers for
/nodeinfo/2.0
is trivial. And given that the information produced is public, there is no reason CORS headers shouldn’t be there.