Ariel imagery from aerial.openstreetmap.org.za has duplicate access-control-allow-origin headers

Question

Ariel imagery from aerial.openstreetmap.org.za has duplicate access-control-allow-origin headers

Closed this issue a month ago · 2 comments

I was doing some editing in https://rapideditor.org/ and noticed tiles from aerial.openstreetmap.org.za were giving cors errors.

Access to image at 'https://aerial.openstreetmap.org.za/ngi-aerial/15/18116/19716.jpg' from origin 'https://rapideditor.org' has been blocked by CORS policy: The 'Access-Control-Allow-Origin' header contains multiple values '*, *', but only one is allowed.

To replicate curl -v https://aerial.openstreetmap.org.za/ngi-aerial/20/579722/630911.jpg --output test.jpeg
and note the duplicate headers

< server: nginx
< date: Fri, 07 Jun 2024 18:02:22 GMT
< content-type: image/jpeg
< content-length: 5387
< access-control-allow-origin: *
< access-control-allow-credentials: true
< cache-control: max-age=604800
< expires: Fri, 14 Jun 2024 18:02:22 GMT
< cache-control: stale-while-revalidate=604800, stale-if-error=604800
< x-cache-status: HIT
< access-control-allow-origin: *

Answer 1 · 2024-06-07T18:07:12.000Z

I'll fix it shortly.

Answer 2 · 2024-06-07T18:39:28.000Z

Fixed in openstreetmap/chef@286f134 and openstreetmap/chef@1b01da2