Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] Listing Origin as an allowed request header is unnecessary #245

Open
1 task done
jub0bs opened this issue Aug 31, 2023 · 0 comments
Open
1 task done

[BUG] Listing Origin as an allowed request header is unnecessary #245

jub0bs opened this issue Aug 31, 2023 · 0 comments
Labels
bug

Comments

@jub0bs
Copy link

jub0bs commented Aug 31, 2023
edited

Is there an existing issue for this?

  • I have searched the existing issues

Current Behavior

The middleware lists Origin as an allowed request header. However, listing Origin is never necessary because that header is added to requests by the browser, never by the client.

Expected Behavior

Not listing Origin as an allowed request header.
@jub0bs jub0bs added the bug label Aug 31, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
Gorilla Web Toolkit
Status: No status
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jub0bs