Page MenuHomeDevCentral

Define Access-Control-Allow-Origin for CSS for assets.
ClosedPublic

Authored by dereckson on May 26 2023, 01:22.
Tags
None
Referenced Files
F3928142: D3136.id8000.diff
Sun, Dec 22, 03:39
F3928141: D3136.id7999.diff
Sun, Dec 22, 03:39
F3928005: D3136.id.diff
Sun, Dec 22, 02:54
F3927923: D3136.diff
Sun, Dec 22, 02:30
Unknown Object (File)
Sat, Dec 14, 18:52
Unknown Object (File)
Fri, Dec 13, 13:01
Unknown Object (File)
Sat, Dec 7, 17:35
Unknown Object (File)
Sat, Dec 7, 10:25
Subscribers
None

Details

Summary

To be sure the assets site serves the expected file, we can use the SRI,
Subresource Integrity mechanism to store a hash in the <link> tag.

If the URL does not support Cross-Origin Resource Sharing (CORS),
the SRI mechanism can't work. We so allow access from all origins.

Reference: https://www.w3.org/TR/SRI/

Ref T1881

Test Plan

Tested with D3119 to load D3135 CSS

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Passed
Unit
No Test Coverage
Branch
main
Build Status
Buildable 4947
Build 5228: arc lint + arc unit