使用AWS re:Post即您表示您同意 AWS re:Post 使用条款
AWS re:Postre:Post

Access-Control-Allow-Origin Header with Cloudfront

0

Hi Fam,

In project i am working right now, developer run a vulnerability in frontend application. then there is some vulnerability regarding Access-Control-Allow-Origin: this header now contain value as *, the vulnerability checked SW says its a vulnerability issue. the solution it gives, to add the domain to this header.

anyone has faced this earlier please help me to solve this.

I have tried with cloudfront but it didnt work.

Thank You.

主题
无服务器前端 Web 和移动网络和内容交付
标签
亚马逊 API 网关Amazon CloudFront
语言
English
layansp
已提问 5 个月前182 查看次数
2 回答
1

Hello.

Are there any other response header policies set in CloudFront?
Will setting "Access-Control-Allow-Origin" in the response header policy solve the problem?
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/creating-response-headers-policies.html

profile picture
专家
Riku_Kobayashi
已回答 5 个月前
  • layansp
    5 个月前

    Thank you mate, I'll try in this way

1

Hi,

This guidance proposes solutions to your problem: https://repost.aws/knowledge-center/no-access-control-allow-origin-error

Best,

Didier

profile pictureAWS
专家
Didier_Durand
已回答 5 个月前
  • layansp
    5 个月前

    Thank you mate I'll try this. its appreciated

您未登录。 登录 发布回答。

一个好的回答可以清楚地解答问题和提供建设性反馈,并能促进提问者的职业发展。

回答问题的准则

相关内容