set access-control-allow-origin to referrer host (!18174) · Merge requests · Administrator / sourcegraph

Administrator requested to merge cors-referer-host into main Feb 11, 2021

Created by: arussellsaw

it turns out using prod to test this was a really dumb idea, the feedback loop is so wide, i could have probably sorted this in a single PR if i wasn't so lazy.

using r.Host was never gonna work, as that's the request host not the site requesting it 🙄

set access-control-allow-origin to referrer host

Merge request reports