Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Fix - Updated CORS filtering logic to remove false positives #3750

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Mar 24, 2023
Merged

Fix - Updated CORS filtering logic to remove false positives #3750

merged 2 commits into from
Mar 24, 2023

Conversation

@Agnul97
Copy link
Contributor

@Agnul97 Agnul97 commented Mar 23, 2023

The CORS filtering logic is revisited in order to remove false positives for requests coming from the same origin. The code adapts, with the best effort, to browsers not compatible with the sec-fetch-site header. In fact, in this case, the cors filtering is performed but logically it is impossible to prevent false positives.

@codecov
Copy link

codecov bot commented Mar 23, 2023
edited
Loading

Codecov Report

Merging #3750 (137b0a6) into develop (20a3fe9) will increase coverage by 0.03%.
The diff coverage is 0.00%.

❗ Current head 137b0a6 differs from pull request most recent head 509be00. Consider uploading reports for the commit 509be00 to get more accurate results

Impacted file tree graph

@@              Coverage Diff              @@
##             develop    #3750      +/-   ##
=============================================
+ Coverage      55.78%   55.81%   +0.03%     
  Complexity         8        8              
=============================================
  Files           1835     1835              
  Lines          34138    34145       +7     
  Branches        2726     2729       +3     
=============================================
+ Hits           19043    19059      +16     
  Misses         14093    14093              
+ Partials        1002      993       -9
Impacted Files Coverage Δ
...kapua/commons/rest/filters/CORSResponseFilter.java 0.00% <0.00%> (ø)
...app/api/resources/v1/resources/UserCredential.java 0.00% <0.00%> (ø)
...ication/user/shiro/UserCredentialsServiceImpl.java 87.03% <ø> (ø)

... and 6 files with indirect coverage changes

Coduz
Coduz requested changes Mar 23, 2023
View reviewed changes
Agnul97
Agnul97 commented Mar 23, 2023
View reviewed changes
Copy link
Contributor Author

@Agnul97 Agnul97 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

implemented changes

@Agnul97 Agnul97 requested a review from Coduz March 23, 2023 15:49
@Coduz Coduz added Bug This is a bug or an unexpected behaviour. Fix it! REST API We hope to REST everyday labels Mar 24, 2023
@Coduz Coduz merged commit 756d01f into eclipse-kapua:develop Mar 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Coduz Coduz Coduz approved these changes

Assignees

No one assigned

Labels

Bug This is a bug or an unexpected behaviour. Fix it! REST API We hope to REST everyday

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Agnul97 @Coduz