使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Access-Control-Allow-Origin Header with Cloudfront

0

Hi Fam,

In project i am working right now, developer run a vulnerability in frontend application. then there is some vulnerability regarding Access-Control-Allow-Origin: this header now contain value as *, the vulnerability checked SW says its a vulnerability issue. the solution it gives, to add the domain to this header.

anyone has faced this earlier please help me to solve this.

I have tried with cloudfront but it didnt work.

Thank You.

主題
無伺服器前端網頁與行動裝置網路與內容交付
標籤
Amazon API GatewayAmazon CloudFront
語言
English
layansp
已提問 5 個月前檢視次數 181 次
2 個答案
1

Hello.

Are there any other response header policies set in CloudFront?
Will setting "Access-Control-Allow-Origin" in the response header policy solve the problem?
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/creating-response-headers-policies.html

profile picture
專家
Riku_Kobayashi
已回答 5 個月前
  • layansp
    5 個月前

    Thank you mate, I'll try in this way

1

Hi,

This guidance proposes solutions to your problem: https://repost.aws/knowledge-center/no-access-control-allow-origin-error

Best,

Didier

profile pictureAWS
專家
Didier_Durand
已回答 5 個月前
  • layansp
    5 個月前

    Thank you mate I'll try this. its appreciated

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容