Access-Control-Allow-Origin missing?
HybridFox opened this issue · 10 comments
I recently noticed resources failing to load on my website because of the Access-Control-Allow-Origin
header missing.
Is this done with a reason because i am sure it was being send a while ago.
Hello. What files do you serve? I recently started to redirect "unknown" file extensions such as images and videos, etc, to GitHub itself.
Hey, i am loading in .HDR files: https://rawcdn.githack.com/pmndrs/drei-assets/aa3600359ba664d546d05821bcbca42013587df2/hdri/venice_sunset_1k.hdr
Some folks were abusing the service to serve copyrighted video files, so I tried to mitigate this issue. Will try to resolve it soon.
Thank you! I don't mind the redirect since the page it redirects to has correct Access-Control-Allow-Origin headers. But currently my browser just fails on being redirect at all since the link is missing the headers
I've added the header to the location link. Could you please quickly check if that works for you?
Hmmm, can't see it yet. Is it possible cloudflare still has it cached? I cleared the cache of my browser
I spoke too soon! It seems the header is working!
But it seems to not be directing at all right now, is that intended?
Well, it should redirect, at least from what I see it redirects
Let me know if you see something else working incorrectly, I will keep this open for a while
Well, it seems there is somewhere still some caching enabled. Firefox shows that the file is not redirect but has the correct headers:
cURL shows a redirect with the correct headers:
and chrome shows a redirect without the headers:
I would honestly trust the cURL the most. So it seems to be fixed then
Let's indeed keep it open for a while to see if the situation resolves itself then :)
Thank you for the quick help!
Looks like it is fixed, closing