Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

Access-Control-Allow-Origin Header with Cloudfront

0

Hi Fam,

In project i am working right now, developer run a vulnerability in frontend application. then there is some vulnerability regarding Access-Control-Allow-Origin: this header now contain value as *, the vulnerability checked SW says its a vulnerability issue. the solution it gives, to add the domain to this header.

anyone has faced this earlier please help me to solve this.

I have tried with cloudfront but it didnt work.

Thank You.

Temas
Sin servidorWeb y móvil front-endRedes y entrega de contenido
Etiquetas
Amazon API GatewayAmazon CloudFront
Idioma
English
layansp
preguntada hace 5 meses182 visualizaciones
2 Respuestas
1

Hello.

Are there any other response header policies set in CloudFront?
Will setting "Access-Control-Allow-Origin" in the response header policy solve the problem?
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/creating-response-headers-policies.html

profile picture
EXPERTO
Riku_Kobayashi
respondido hace 5 meses
  • layansp
    hace 5 meses

    Thank you mate, I'll try in this way

1

Hi,

This guidance proposes solutions to your problem: https://repost.aws/knowledge-center/no-access-control-allow-origin-error

Best,

Didier

profile pictureAWS
EXPERTO
Didier_Durand
respondido hace 5 meses
  • layansp
    hace 5 meses

    Thank you mate I'll try this. its appreciated

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante