![]() ![]() ![]() RewriteCond expr "reqenv('CORSProcessing') = 'true' & reqenv('CORSTrusted') = 'false'" # CORS - send 204 for CORS requests which are not trusted # Always vary on origin, even if its not there. Header unset Access-Control-Max-Age "expr=reqenv('CORSProcessing') = 'false' || reqenv('CORSTrusted') = 'false'" Header unset Access-Control-Allow-Methods "expr=reqenv('CORSProcessing') = 'false' || reqenv('CORSTrusted') = 'false'" Header unset Access-Control-Allow-Origin "expr=reqenv('CORSProcessing') = 'false' || reqenv('CORSTrusted') = 'false'" Header unset Access-Control-Allow-Credentials "expr=reqenv('CORSProcessing') = 'false' || reqenv('CORSTrusted') = 'false'" Header always set Access-Control-Allow-Headers "Origin, Accept, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers" "expr=reqenv('CORSTrusted') = 'true'" Header always set Access-Control-Max-Age 1800 "expr=reqenv('CORSTrusted') = 'true'" Header always set Access-Control-Allow-Methods "GET" "expr=reqenv('CORSTrusted') = 'true'" SetEnvIfExpr "req_novary('Access-Control-Request-Method') = '' & %e" "expr=reqenv('CORSTrusted') = 'true'" SetEnvIfExpr "req_novary('Origin') != ''" CORSType=cors CORSProcessing=true CORSTrusted=false SetEnvIfExpr "req_novary('Origin') = ''" CORSType=none CORSProcessing=false ![]() block below, into your enabled vhost configuration file. Open the vhost configuration file for the AEM Publish service, in your Dispatcher configuration project, typically at dispatcher/src/conf.d/available_vhosts/.vhostĬopy the contents of the. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |