pd: cors headers not being served (regression) #3865
Assignees
Comments
conorsch
added
A-node
|
It's worth pointing out that we overlooked this regression because we didn't bother to wire up tests in CI to confirm the behavior. We should add a simple header check via the integration tests, which talk to pd directly, to make sure the headers are preserved during refactors. |
|
Git bisect points to e7bcdba as the first bad commit, which makes sense: it was a substantial refactor. See PR #3652 for context. I'm going to pair with @cratelyn briefly today to try to restore the original functionality; if we don't achieve that in the timebox, then we'll stick with the stopgap solution of applying headers at the ingress layer to accommodate web team needs. |
conorsch
added a commit
that referenced
this issue
Feb 22, 2024
This change restores the serving of CORS headers in HTTP responses by pd. During the refactor of auto-https logic in #3652, we overlooked that the tower [CorsLayer](https://docs.rs/tower-http/0.4.4/tower_http/cors/struct.CorsLayer.html#) was no longer being carried through after type conversions between tower, tonic, and axum. Simply moving the layer attachment to the already-built axum router, rather than the previously constructed tonic router, resolves the problem. We now include an integration test to check for the headers, so we don't inadvertently drop them again. Closes #3865.
conorsch
added a commit
that referenced
this issue
Feb 23, 2024
This change restores the serving of CORS headers in HTTP responses by pd. During the refactor of auto-https logic in #3652, we overlooked that the tower [CorsLayer](https://docs.rs/tower-http/0.4.4/tower_http/cors/struct.CorsLayer.html#) was no longer being carried through after type conversions between tower, tonic, and axum. Simply moving the layer attachment to the already-built axum router, rather than the previously constructed tonic router, resolves the problem. We now include an integration test to check for the headers, so we don't inadvertently drop them again. Closes #3865.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Back in #3281 we modified
pdto serve permissive cors headers directly. Some time in the intervening period that behavior was lost. First reported by @grod220 yesterday.To Reproduce
Steps to reproduce the behavior:
curl -I http://localhost:8080Expected behavior
Displayed headers should include:
Additional context
We can temporarily patch the hosting config to re-apply these headers. That's what I've done as a stopgap to unblock the web team. Those ad-hoc changes will be dropped on the next CI deploy, though, so we should try to fix the problem in pd.
The text was updated successfully, but these errors were encountered: