wynd @wynd

@jeffalo pls allow any origin to use the api (cors)

Apr 25, 2022, 9:04 PM
8

comments

lily @lily Apr 26, 2022, 10:34 AM

bad idea
wynd @wynd Apr 26, 2022, 11:00 AM

Why, you can already access it several ways
lily @lily Apr 26, 2022, 11:01 AM

security issue
wynd @wynd Apr 26, 2022, 11:01 AM

In what way
lily @lily Apr 26, 2022, 11:13 AM

if you’re logged in a malicious site could post as you for example
wynd @wynd Apr 26, 2022, 11:16 AM

You still send auth with requests lil
lily @lily Apr 26, 2022, 11:18 AM

@jeffalo pls help me to explain
See more replies