Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Force using HTTPS in requirejs (Cross-Origin Resource Sharing policy error in console) #154

Closed
jonherrmann opened this issue May 9, 2018 · 1 comment
Closed

Force using HTTPS in requirejs (Cross-Origin Resource Sharing policy error in console) #154

jonherrmann opened this issue May 9, 2018 · 1 comment
Assignees
@jonherrmann
Labels
importance: high Will be scheduled as soon as possible Type: Bug Defect in the software
Milestone
etf-webapp 2.0.0

Comments

@jonherrmann
Copy link
Collaborator

jonherrmann commented May 9, 2018
edited
Loading

Error loading the ETF Web Interface, please contact the System Administrator. Error message: Script error for "moment"
http://requirejs.org/docs/errors.html#scripterror

Error in console:
Cross-origin redirection to https://cdnjs.cloudflare.com/ajax/libs/toastr.js/2.1.3/toastr.min.js denied by Cross-Origin Resource Sharing policy: Origin http://X is not allowed by Access-Control-Allow-Origin.

The issue occurs with Safari (iOS and macOS), Chrome ans IE 11 when the web interface is opened using http without s.

Workaround for deployments: redirect all http requests to https .
@jonherrmann jonherrmann added Type: Bug Defect in the software importance: low Will be scheduled later. Leave a comment if you think the importance is higher. Browser: Safari Type: Draft labels May 9, 2018
@jonherrmann jonherrmann self-assigned this May 9, 2018
@jonherrmann jonherrmann removed their assignment May 30, 2018
@jonherrmann jonherrmann changed the title Web interface not loading with Safari Browser Force using HTTPS / Web interface not loading with Safari Browser Sep 12, 2018
@jonherrmann jonherrmann added importance: high Will be scheduled as soon as possible and removed Browser: Safari importance: low Will be scheduled later. Leave a comment if you think the importance is higher. labels Sep 12, 2018
@jonherrmann
Copy link
Collaborator Author

The jsdelivr CDN enabled HSTS. Using the ETF Web UI with HTTP without S no longer works.

@jonherrmann jonherrmann changed the title Force using HTTPS / Web interface not loading with Safari Browser Force using HTTPS in requirejs (Cross-Origin Resource Sharing policy error in console) Sep 12, 2018
@jonherrmann jonherrmann mentioned this issue Sep 12, 2018
Closed
@jonherrmann jonherrmann self-assigned this Sep 12, 2018
@jonherrmann jonherrmann added this to the etf-webapp 2.0.0 milestone Nov 22, 2018
jonherrmann added a commit to interactive-instruments/etf-webapp that referenced this issue Nov 23, 2018
@jonherrmann
Fixes etf-validator#154
0968073 
IE 11
jonherrmann added a commit that referenced this issue Nov 23, 2018
@jonherrmann
Merge pull request #176 from interactive-instruments/next
0085acb 
Fixes #154, fixes #171
jonherrmann added a commit to interactive-instruments/etf-webapp that referenced this issue Dec 2, 2018
@jonherrmann
Fixes etf-validator#154 SRI for moment.js
5310a0f
jonherrmann added a commit to interactive-instruments/etf-webapp that referenced this issue Dec 4, 2018
@jonherrmann
Fixes etf-validator#154 SRI for moment.js
6ecf4e1
@jonherrmann jonherrmann mentioned this issue Jan 6, 2019
Merged
@jonherrmann jonherrmann mentioned this issue Jan 21, 2019
Closed
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jonherrmann jonherrmann

Labels
importance: high Will be scheduled as soon as possible Type: Bug Defect in the software
Projects
None yet
Milestone
etf-webapp 2.0.0
Development

No branches or pull requests
1 participant
@jonherrmann