Re: Didn't we enable CORS? from Renoir Boulanger on 2013-10-23 (public-webplatform@w3.org from October 2013)

From: Renoir Boulanger <renoir@w3.org>
Date: Wed, 23 Oct 2013 10:24:41 -0400
To: Julee <julee@adobe.com>
Cc: List WebPlatform public <public-webplatform@w3.org>, David Kirstein <frozenice@frozenice.de>, Ryan Lane <rlane32@gmail.com>
Message-Id: <A01F43D6-BD62-4879-9806-2DDEEC6571A2@w3.org>

Hi all

I have a note regarding to send a CORS header on all WPD domains (see thread).

I still have a few questions that needs to be addressed:
@{somebody} to review what I wrote on [1] page.  Although it is not a general audience page. We might want to write this differently.
@Julee, I still do not know which E-mail form you are talking about on this thread
Tell me whether we allow it at large or not, objections?

As to answer the thread:

When I look at the states, I only see in docs subdomain, in the Apache configuration.

/srv/salt/apache/docs, line 26

    <FilesMatch "\.(ttf|otf|eot)$"> 
        <IfModule mod_headers.c>
            Header set Access-Control-Allow-Origin "*"
        </IfModule>
    </FilesMatch>

This means that the only time we send the CORS header is when we serve files with names ending by TTF or  OTF or EOT.

I have to tell that I am also sending a CORS header by way of a PHP file [1] for the piwik campaign bookmarklet utility [1].

  [0]: https://github.com/webplatform/wpd-piwik-campaign/blob/master/index.php#L65
  [1]: http://webplatform.org/campaign/

Do we want to enable it everywhere?

Renoir 
~

On 2013-10-17, at 2:59 AM, Julee <julee@adobe.com> wrote:

> Hi, Renoir: For the MediaWiki email API. Here's some history on this:
> 
> http://lists.w3.org/Archives/Public/public-webplatform/2013May/0144.html
> 
> J
> ----------------------------
> julee@adobe.com
> @adobejulee

Attachments

application/pkcs7-signature attachment: smime.p7s

Received on Wednesday, 23 October 2013 14:24:48 UTC