https://bz.apache.org/bugzilla/show_bug.cgi?id=67472
Christopher Schultz <ch...@christopherschultz.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
OS| |All
Status|NEW |NEEDINFO
--- Comment #1 from Christopher Schultz <ch...@christopherschultz.net> ---
Please post more of the request details (e.g. HTTP method, URL, etc.) as well
as your CORDSFilter configuration. Feel free to mask-out sensitive parts such
as domain name and/or application name.
The CORDFilter contains this comment just before these header values:
// CORS requests (SIMPLE, ACTUAL, PRE_FLIGHT) set the following headers
// although non-CORS requests do not need to. The headers are always set
// as a) they do no harm in the non-CORS case and b) it allows the same
// response to be cached for CORS and non-CORS requests.
This comment asserts that there is no harm done by setting them, but you are
claiming otherwise. Can you please explain what is happening to you in more
detail?
The note about caching seems very relevant to HTTP.
Note that this code has remained unchanged for the past 5 years, and no other
complaints have been filed that I know of.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
