amazon s3 - Getting S3 CORS Access-Control-Allow-Origin to dynamically echo requesting domain -

-

how can set s3 cors allowedorigin configuration such dynamically echos requesting domain in access-control-allow-origin header?

in post, "cors cloudfront, s3, , multiple domains", suggested setting allowedorigin <allowedorigin>*</allowedorigin> this. however, s3 returns access-control-allow-origin: * instead.

access-control-allow-origin: * not work in case using image.crossorigin = "use-credentials" in javascript app. option, s3 returns access-control-allow-credentials: true. cross origin access image fails because using wildcard allowed origin in conjunction credentials not permitted.

background why needed:

in setup, access images on s3 has go through our domain, authentication required restrict access , check if account authorized access images. if is, server returns 302 redirect s3 url.

for authentication work, image.crossorigin = "use-credentials" has set request hits server required credentials. (incidentally, when tested on firefox 30.0 , chrome 35.0.1916.153, if crossorigin set anonymous, credentials still sent. not on safari 7.0.4. consistent cross-browser behavior obtained using use-credentials.).

because browsers transparently redirects s3 url, credentials sent.

aws's cors documentation not document this, managed answer in thread on aws developer forums, found aws changed original behavior of echoing requesting domain if * being used allowedorigin.

to s3 dynamically echo requesting domain, allowedorigin has set such:

<allowedorigin>http://*</allowedorigin> <allowedorigin>https://*</allowedorigin>

Comments

Post a Comment

Popular posts from this blog

google api - Incomplete response from Gmail API threads.list -

-
i plot number of emails in inbox on time using gmail api , i'm seeing lot of drop-outs, whatever reason i'm getting incomplete count of messages @ single time points. my plots here: https://plot.ly/~tdsmith/2 -- "drop-outs" i'm complaining trace shoots downwards , recovers previous level @ next timepoint. the code i'm using count emails here: https://github.com/tdsmith/gmail-plotly/blob/master/gmail-plotly.py#l47-l64 what can diagnose these faults?
Read more

Installing Android SQLite Asset Helper -

-
i need use ready made database. search solution on internet did not work until decided use mentioned library found here . however, found hard use library in installation procedures shallow beginners. i appreciate step step procedure on how use android studio. in struggle tried copying sources main/libs , adding line gradle did not work. use api 19 if helps. update here build.gradle // top-level build file can add configuration options common sub-projects/modules. buildscript { repositories { mavencentral() } dependencies { classpath 'com.android.tools.build:gradle:0.11.+' compile 'com.readystatesoftware.sqliteasset:sqliteassethelper:+' // note: not place application dependencies here; belong // in individual module build.gradle files } } allprojects { repositories { mavencentral() } } trying compile project error error:(9, 0) no signature of method: org.gradle.api.internal.artifacts
Read more

Qt Creator - Searching files with Locator including folder -

-
one quick question qtcreator : know possible use locator open files using "ctrl-k" shortcut. however, possible search files including locations? for example, let's want locate file named "main.cpp" in folder named "myfolder" , have lots of other main.cpp files. what should type locator in order open ? just type myfolder/main.cpp in locator
Read more