[rabbitmq-discuss] CORS in the mgmt http api

• Previous message: [rabbitmq-discuss] CORS in the mgmt http api
• Next message: [rabbitmq-discuss] CORS in the mgmt http api
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 25/03/13 14:24, carlhoerberg wrote:
> What about adding CORS headers to the mgmt HTTP API responses, so that the
> API can be used from other client side apps?
>
> https://github.com/rabbitmq/rabbitmq-management/issues/3

As I said at the issue: we don't want to add 
"Access-Control-Allow-Origin: *", this is a security thing.

Allowing you to configure mgmt so that it allows custom headers to be 
set would be OK I guess.

What is your use case though? Are you intending to write an alternate 
web UI? :-)

Cheers, Simon

-- 
Simon MacMullen
RabbitMQ, VMware

• Previous message: [rabbitmq-discuss] CORS in the mgmt http api
• Next message: [rabbitmq-discuss] CORS in the mgmt http api
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]