[MDL-69203] Mobile app requests fail because moodle doesn't send CORS header - Moodle Tracker

XML

Word

Printable

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 3.8.3, 3.9
Fix Version/s: None
Component/s: Administration, Libraries
Labels:

Affected Branches:
MOODLE_38_STABLE, MOODLE_39_STABLE

Description

Tested on https://school.moodledemo.net and the latest 3.9 moodle app.

With the latest update to the Moodle app it now respects CORS headers, these are sent on web service requests but not on the requests made under admin/tool/mobile/ directory and /lib/ajax/service.php file.

Here's an example:

07-06 08:35:49.398 14884 14884 D SystemWebChromeClient: http://localhost/: Line 0 : Access to XMLHttpRequest at 'https://school.moodledemo.net/lib/ajax/service.php?info=tool_mobile_get_public_config' from origin 'http://localhost' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Steps to reproduce:

Download official moodle app
Connect to device with adb logcat
Configure site to be school.moodledemo.net
Close and reopen app
Look in logcat to see failing requests

Attachments

Issue Links

will be (partly) resolved by

MOBILE-4294 Use native HTTP requests

Open

Activity

People

Assignee:: Unassigned

Reporter:: Alexander Morris

Participants:: Alexander Morris, Andrew Lyons, Michael Hawkins, Victor Déniz Falcón

Component watchers:: David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo

Votes:: 2 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 06/Jul/20 4:41 AM

Updated:: 16/May/23 7:04 PM