cyu/rack-cors issues and pull requests

#282 - Security vulnerability with `/*` wildcard

Issue - State: open - Opened by vlad-pisanov about 2 months ago - 1 comment

#281 - Fix setting changelog_uri

Pull Request - State: closed - Opened by fynsta 5 months ago - 1 comment

#280 - The browser does not store the cookies session

Issue - State: open - Opened by danielmalaton 5 months ago

#279 - Provide a 'Changelog' link on rubygems.org/gems/rack-cors

Pull Request - State: open - Opened by mark-young-atg 5 months ago

#278 - Fix error loading gemspec

Pull Request - State: open - Opened by sato11 7 months ago

#277 - Remove unnecessary mention of RC1

Pull Request - State: open - Opened by wiktor-k 7 months ago

#276 - docs(readme): fix `rake middleware` to `rails middleware`

Pull Request - State: closed - Opened by ismailarilik 8 months ago - 1 comment

#275 - Various docs for 2.0.2

Pull Request - State: closed - Opened by jaredbeck 9 months ago

#274 - [SECURITY] CVE-2024-27456 - Insecure File Permissions in rack-cors v2.0.1

Issue - State: closed - Opened by ajmilazzo 9 months ago - 15 comments

#273 - Documentation for the frame-ancestors directive?

Issue - State: open - Opened by shellandbull 10 months ago

#272 - Access-Control-Allow-Origin is returned only if correct Origin header is available

Issue - State: closed - Opened by neer3 11 months ago

#271 - Add Ruby 3.3 to CI matrix

Pull Request - State: open - Opened by m-nakamura145 11 months ago

#270 - Escape $ in ressource paths compile

Pull Request - State: closed - Opened by aithscel about 1 year ago

#269 - Ressource with $ are not handled as expected

Issue - State: closed - Opened by aithscel about 1 year ago

#268 - Upgrade to rails 7.1.1

Issue - State: open - Opened by navidemad about 1 year ago

#267 - Fix typo in README

Pull Request - State: closed - Opened by gabo-cs about 1 year ago - 1 comment

#266 - Mocha 2.0+ / Minitest 5.19+ compatibility

Pull Request - State: closed - Opened by voxik over 1 year ago - 2 comments

#265 - Regex origin woes

Issue - State: closed - Opened by johnknapp over 1 year ago - 2 comments

#264 - Why is Rails.application.config.hosts required?

Issue - State: closed - Opened by paul-at over 1 year ago - 1 comment

#263 - How to add Access-Control-Allow-Private-Network header in Option response?

Issue - State: closed - Opened by galexw over 1 year ago

#262 - Fix test

Pull Request - State: closed - Opened by cyu over 1 year ago

#261 - Release version 2.0.1

Issue - State: closed - Opened by johnnyshields over 1 year ago - 2 comments

#260 - Refs #259

Pull Request - State: closed - Opened by pevzzz over 1 year ago - 2 comments

#259 - issue comeback duplicate headers because of header name case

Issue - State: open - Opened by pevzzz over 1 year ago - 3 comments

#258 - delete the confusing `2.0.0` tag since `v2.0.0` exists?

Issue - State: closed - Opened by jeffwidman over 1 year ago - 1 comment

#257 - Update badge in README

Pull Request - State: closed - Opened by ohbarye over 1 year ago

#256 - Migrate CI to GitHub actions

Pull Request - State: closed - Opened by ohbarye over 1 year ago - 2 comments

#254 - Changelog: Fix date on 2.0.0 release

Pull Request - State: closed - Opened by tisba almost 2 years ago - 1 comment

#253 - Update CHANGELOG about 2.0.0 release date

Pull Request - State: closed - Opened by PikachuEXE almost 2 years ago - 6 comments

#252 - Refs #251, 862a776 Remove Rack::Utils::HeaderHash

Pull Request - State: closed - Opened by everton almost 2 years ago - 2 comments

#251 - Remove/Replace Rack::Utils::HeaderHash

Issue - State: closed - Opened by everton almost 2 years ago - 7 comments

#250 - Cookie session related middleware interferes

Issue - State: open - Opened by styliii almost 2 years ago - 3 comments

#249 - Is there any CI?

Issue - State: closed - Opened by eregon almost 2 years ago - 1 comment

#248 - [README] Update readme link

Pull Request - State: closed - Opened by Mth0158 almost 2 years ago - 1 comment

#247 - Stripe api with Cloud9 setup

Issue - State: open - Opened by mices almost 2 years ago

#246 - Vulnerabilities in included mocha.js

Issue - State: open - Opened by Niedzwiedz almost 2 years ago - 1 comment

#245 - My CORS setup blocks bad urls but not POSTMAN requests

Issue - State: closed - Opened by Ju777 about 2 years ago - 3 comments

#242 - Does not work with Rack 3.0.0

Issue - State: closed - Opened by LarryNorth about 2 years ago - 1 comment

#241 - Tag for v2.0.0 is missing

Issue - State: closed - Opened by MuhammadRazaAslam about 2 years ago - 3 comments

#240 - Support for Timing-Allow-Origin

Issue - State: closed - Opened by bessey about 2 years ago - 5 comments

#239 - Controller still executes the request although CORS is blocked for this source

Issue - State: closed - Opened by jhintringer over 2 years ago - 1 comment

#238 - the Vary header does not seem to be set for CORS pre-flight checks that use the OPTIONS method

Issue - State: open - Opened by regisebersole over 2 years ago - 1 comment

#237 - Rails 7 and ros-apartment login logout set up

Issue - State: closed - Opened by martinbarilik over 2 years ago - 1 comment

#236 - add Ruby 3.x to travis CI config

Pull Request - State: closed - Opened by clarkedb over 2 years ago - 3 comments

#235 - Doesn't append Access-Control-Allow-Origin header as response

Issue - State: closed - Opened by winston0410 over 2 years ago - 4 comments

#234 - Invite more maintainers

Issue - State: closed - Opened by sandstrom over 2 years ago - 1 comment

#233 - Version 2.0 on RubyGems

Issue - State: closed - Opened by carlwiedemann almost 3 years ago - 1 comment

#232 - [Quick Question] Is this a valid way to use wildcards in a configuration?

Issue - State: closed - Opened by dep almost 3 years ago - 2 comments

#231 - Ruby 3.0 support

Issue - State: closed - Opened by clarkedb almost 3 years ago - 1 comment

#230 - v

Issue - State: closed - Opened by robinjdkim almost 3 years ago

#229 - Rack::Cors not getting inserted in rails middleware stack

Issue - State: closed - Opened by nimmolo about 3 years ago - 2 comments

#228 - Explain behavior with raised exceptions

Pull Request - State: open - Opened by julik about 3 years ago - 2 comments

#227 - Question: Possible to set CORS headers for multiple uris in a single request?

Issue - State: open - Opened by joegaudet about 3 years ago

#226 - Rack cors not blocking requests with no origin header set

Issue - State: closed - Opened by bubbaspaarx about 3 years ago - 2 comments

#225 - Support custom protocols as origins

Pull Request - State: closed - Opened by cyu over 3 years ago

#224 - README: Example for start & end string anchors

Pull Request - State: closed - Opened by olleolleolle over 3 years ago - 1 comment

#223 - Usage with Capacitor/Ionic

Issue - State: closed - Opened by wolak88 over 3 years ago - 1 comment

#222 - How do I use Rails.application.config.hosts << "product.com" in development

Issue - State: closed - Opened by mices over 3 years ago - 1 comment

#221 - Using [:any] doesn't work

Issue - State: closed - Opened by sjmiller609 over 3 years ago

#220 - Wrong response headers are being sent

Issue - State: closed - Opened by straversi over 3 years ago - 2 comments

#219 - Document how to use custom protocols (chrome-extension://, etc.)

Pull Request - State: closed - Opened by aguynamedben over 3 years ago - 2 comments

#218 - Rack::Cors modifies headers to be case-sensitive, producing duplicated headers

Issue - State: closed - Opened by dgmora almost 4 years ago - 1 comment

#217 - Mobile + web origins

Issue - State: closed - Opened by Nechitadi almost 4 years ago - 3 comments

#216 - PUT fails while GET and POST succeed

Issue - State: closed - Opened by johnknapp almost 4 years ago - 4 comments

#215 - Rack-cors doesn't work with rails 6

Issue - State: closed - Opened by Shintouney almost 4 years ago - 2 comments

#214 - CORS response headers missing from OPTIONS request in rack app

Issue - State: closed - Opened by johnknapp almost 4 years ago - 14 comments

#213 - Confusing documentation

Issue - State: closed - Opened by DanielStevenLewis about 4 years ago - 1 comment

#212 - jQuery Vulnerability

Issue - State: closed - Opened by neryb about 4 years ago - 2 comments

#211 - Purpose of empty 'Access-Control-Expose-Headers' header?

Issue - State: open - Opened by andreas-venturini about 4 years ago

#210 - Expose a subdomain resource only to all origins

Issue - State: closed - Opened by xiaopow about 4 years ago - 3 comments

#209 - Add Truffleruby head to CI

Pull Request - State: closed - Opened by gogainda about 4 years ago - 2 comments

#208 - abstract CORS validation to a public method

Issue - State: closed - Opened by BlancoSebastianEzequiel over 4 years ago - 3 comments

#207 - Update README.md

Pull Request - State: closed - Opened by hs-eallen over 4 years ago

#206 - Help for Rails6

Pull Request - State: closed - Opened by cyu over 4 years ago

#205 - Access-Control-Request-Method is missing

Issue - State: closed - Opened by coding-bunny over 4 years ago - 2 comments

#204 - Fix example link in README

Pull Request - State: closed - Opened by lambda2 over 4 years ago

#203 - Not working on Rails 6.0?

Issue - State: closed - Opened by Evlos over 4 years ago - 19 comments

#202 - Refactor into one class per file, add Rubocop

Pull Request - State: closed - Opened by MXfive over 4 years ago - 2 comments

#201 - Breaking API change from 1.1.0 to 1.1.1

Issue - State: closed - Opened by MXfive over 4 years ago - 2 comments

#200 - CORS problems with Rack-cors gem

Issue - State: closed - Opened by publicidadeba almost 5 years ago - 2 comments

#195 - updating to '>= 1.0.4' leads to missing ressource headers for OPTIONS requests

Issue - State: closed - Opened by jethroo almost 5 years ago - 1 comment

#191 - NoMethodError: undefined method 'unescape_path' for Rack::Utils:Module

Issue - State: closed - Opened by prashant-kiwi about 5 years ago - 13 comments

#185 - expose header is empty

Issue - State: closed - Opened by mongeta over 5 years ago - 5 comments

#184 - Add configuration note to README.md

Pull Request - State: closed - Opened by akaryu0206 over 5 years ago - 1 comment

#179 - pre-flight requests disconnect me from my application (non-rails)

Issue - State: closed - Opened by BuonOmo almost 6 years ago - 1 comment

#178 - how can i add multiple origins in rack-cors

Issue - State: open - Opened by deepaksisodiaa almost 6 years ago - 7 comments

#176 - Question: why do POST responses also include Access-Control-* headers?

Issue - State: closed - Opened by armanm almost 6 years ago - 1 comment

#175 - README is incorrect about path patterns

Issue - State: closed - Opened by grncdr about 6 years ago - 1 comment

#172 - Fix possible frozen hash mutation

Pull Request - State: open - Opened by uasi over 6 years ago

#169 - "headers" is nil - crash on request

Issue - State: open - Opened by wesleysmith12 over 6 years ago - 3 comments

#163 - add note on origins w/ default port to README.md

Pull Request - State: open - Opened by nbr over 6 years ago - 6 comments

#160 - communicate with react web api call with node server

Issue - State: closed - Opened by RajaKorada over 6 years ago - 2 comments

#154 - Configuration problem

Issue - State: closed - Opened by BorisBresciani almost 7 years ago - 4 comments

#151 - CORS With database

Issue - State: closed - Opened by puneetgaurr about 7 years ago - 9 comments

GitHub / cyu/rack-cors issues and pull requests