whatyouhide/corsica

Issues

• Question About Corsica Error in Phoenix Server

  #72 opened 8 months ago by tsubaron
  1

• The recap table on CORS response headers needs some love

  #71 opened 9 months ago by jub0bs
  2

• The regexp example is dangerously permissive

  #70 opened 9 months ago by jub0bs
  4

• PLTs are included in hex package

  #68 opened 9 months ago by aaronrenner
  1

• Dialyzer errors with new opaque typespecs

  #66 opened a year ago by doorgan
  1

• in put_cors_simple_resp_headers, log method throws "key :accepted not found in: []"

  #64 opened a year ago by FFdhorkin
  5

• Support Access-Control-Allow-Private-Network in preflight request

  #62 opened 2 years ago by wchenNL
  2

• CORS error when adding “x-csrf-token” request header

  #58 opened 2 years ago by thojanssens
  2

• Correct Syntax For Specifying Header Key Value Pairs

  #54 opened 3 years ago by conradwt
  6

• Corsica does reject origins that are not allowed, only logs a warning

  #52 opened 3 years ago by DevonPeroutky
  2

• Misleading docs.

  #49 opened 4 years ago by hickscorp
  2

• Clarify that `Plug.Static` is a router for CORS purposes

  #48 opened 4 years ago by halostatue
  1

• SameSite header

  #46 opened 4 years ago by slashmili
  2

• paytm integration with ionic application

  #41 opened 6 years ago by kumarkvinoth
  1

• cowboy dependency required?

  #40 opened 6 years ago by steffkes
  2

• Access-Control-Allow-Origin header is not present

  #39 opened 6 years ago by lobo-tuerto
  5

• Invalid preflight CORS reuqest because the header "accept" is not in :allow_headers

  #10 opened 9 years ago by justinbkay
  30

• resource "/*" results in compiler warning with Corsica.Router

  #36 opened 6 years ago by techgaun
  1

• Make `:origins` a required option to avoid being insecure by default

  #33 opened 6 years ago by thoughtless
  4

• Provide an :always option to use without Origin Header

  #32 opened 7 years ago by webdeb
  2

• Ability to allow all headers

  #30 opened 7 years ago by nsweeting
  3

• odd access-control-request-headers behavior

  #31 opened 7 years ago by buhman
  1

• No way to configure corsica for releases via env vars

  #27 opened 7 years ago by hanrelan
  2

• SyntaxError when using Corsica.Router (v0.5.0)

  #26 opened 8 years ago by gabrielmangiurea
  1

• no function clause matching in Keyword.merge/2

  #22 opened 8 years ago by madshargreave
  1

• Could you create a new release with the code style fixes?

  #20 opened 8 years ago by samueljseay
  1

• Feedback - Granular Logging Support

  #12 opened 8 years ago by zmoshansky
  2

• Dynamic accepted origins?

  #17 opened 8 years ago by madshargreave
  1

• Invalid quoted expression on origins regex

  #18 opened 8 years ago by Brightergy-SamarAcharya
  0

• No CORS headers on statically served files

  #16 opened 8 years ago by madshargreave
  3

• Doc: mention in Readme that regex is allowed

  #14 opened 8 years ago by pinx
  1

• no function clause matching in Better.Plug.CORS.do_match/4

  #13 opened 8 years ago by linjunpop
  2

• Spelling error

  #11 opened 8 years ago by combsco
  5

• Can't get Corsica to respond to pre-flight requests

  #8 opened 9 years ago by ianwalter
  2

• Support logging

  #5 opened 9 years ago by whatyouhide
  6

• No headers when the request is invalid, always

  #4 opened 9 years ago by whatyouhide
  3

• Use "whitelist" somewhere

  #3 opened 9 years ago by whatyouhide
  0

• When used as a plug, it should default to all resources

  #1 opened 9 years ago by whatyouhide
  0

• `Origin` header can't be "*" if credentials are allowed

  #2 opened 9 years ago by whatyouhide
  0