[Taginfo-dev] CORS header: Incompatible change!
Jochen Topf
jochen at remote.org
Thu Oct 9 07:42:24 UTC 2014
Hi!
If you are running your own taginfo instance the newest version has an
important change thats affecting you if you want external services in browsers
access to your API.
Taginfo used to set the CORS header Access-Control-Allow-Origin=* for
/api requests. We are having some problems with that on the main server
(https://github.com/openstreetmap/iD/issues/2333) so I have changed the
behaviour.
The header will now only be set if the config variable
"instance.access_control_allow_origin" exists. It will be set to whatever
is in that variable. If you want the old behaviour, set it to "*". If
nobody is using the API URLs on your site anyway, you can just ignore this.
Jochen
--
Jochen Topf jochen at remote.org http://www.jochentopf.com/ +49-721-388298
More information about the Taginfo-dev
mailing list