api.php: add CORS header (!563) · Merge requests · repos / ci-tools / patchdemo

Bartosz Dziewoński requested to merge github/fork/hashar/api-cors-header into master May 24, 2023

Created by: hashar

We need the API to emit Access-Control-Allow-Origin: * to allow downstream usage in JavaScript application. For example the integration with https://gerrit.wikimedia.org/. Without it, the browser complains with:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://patchdemo.wmflabs.org/api.php?action=findwikis&change=922162. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing).

Part of #285 (closed) Follow-up #537

Bug: https://phabricator.wikimedia.org/T332474

Admin message

Admin message

Admin message

api.php: add CORS header

Merge request reports