Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

accessControlExposeHeaders CORS configuration is not allowed through apk-conf deployment #1638

Closed
PasanT9 opened this issue Aug 16, 2023 · 0 comments · Fixed by #1649
Closed
Assignees
Milestone

Comments

@PasanT9
Copy link
Contributor

PasanT9 commented Aug 16, 2023

Description:
Setting accessControlExposeHeaders CORS configuration using apk-conf deployment causes the following error.

{
    "code": 909029,
    "message": "Invalid apk-conf provided",
    "description": "Invalid apk-conf provided",
    "moreInfo": {
        "extraneous key [accessControlExposeHeaders] is not permitted": "#/corsConfiguration: extraneous key [accessControlExposeHeaders] is not permitted"
    }
}

However the same configuration is allowed though APIPolicy CR.

Suggested Labels:

Suggested Assignees:

Affected Product Version:

OS, DB, other environment details and versions:

Steps to reproduce:

  1. Add the following configurations to the apk-conf file
corsConfiguration:
  corsConfigurationEnabled: true
  accessControlAllowCredentials: true
  accessControlAllowOrigins:
    - "abc.com"
  accessControlAllowHeaders:
    - authorization
  accessControlAllowMethods:
    - GET
  accessControlExposeHeaders:
    - "*"
  1. Deploy the API.

Related Issues:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: Done/Done
Development

Successfully merging a pull request may close this issue.

3 participants