Page MenuHomeDevCentral

Define Access-Control-Allow-Origin for CSS for assets.
ClosedPublic

Authored by dereckson on May 26 2023, 01:22.
Tags
None
Referenced Files
F3764878: D3136.id7999.diff
Fri, Nov 22, 08:58
F3764846: D3136.id8000.diff
Fri, Nov 22, 08:47
F3763886: D3136.diff
Fri, Nov 22, 03:08
Unknown Object (File)
Tue, Nov 12, 17:51
Unknown Object (File)
Tue, Nov 12, 09:32
Unknown Object (File)
Thu, Nov 7, 22:38
Unknown Object (File)
Fri, Oct 25, 21:19
Unknown Object (File)
Fri, Oct 25, 21:15
Subscribers
None

Details

Summary

To be sure the assets site serves the expected file, we can use the SRI,
Subresource Integrity mechanism to store a hash in the <link> tag.

If the URL does not support Cross-Origin Resource Sharing (CORS),
the SRI mechanism can't work. We so allow access from all origins.

Reference: https://www.w3.org/TR/SRI/

Ref T1881

Test Plan

Tested with D3119 to load D3135 CSS

Diff Detail

Repository
rOPS Nasqueron Operations
Lint
Lint Not Applicable
Unit
Tests Not Applicable