Uploaded image for project: 'Moodle app'
  1. Moodle app
  2. MOBILE-3484

Mobile app requests fail because moodle doesn't send CORS header

    XMLWordPrintable

    Details

    • Affected Branches:
      MOODLE_39_STABLE

      Description

      I've also reported this to Moodle project on MDL-69203 since the change will need to happen in Moodle.

      Tested on https://school.moodledemo.net and the latest 3.9 moodle app.

      With the latest update to the Moodle app it now respects CORS headers, these are sent on web service requests but not on the requests made under admin/tool/mobile/ directory and /lib/ajax/service.php file.
      This causes SSO login to not be made available as a choice as it can't make the initial requests.

      Here's an example:

      07-06 08:35:49.398 14884 14884 D SystemWebChromeClient: http://localhost/: Line 0 : Access to XMLHttpRequest at 'https://school.moodledemo.net/lib/ajax/service.php?info=tool_mobile_get_public_config' from origin 'http://localhost' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
      

      Steps to reproduce:

      1. Download official moodle app
      2. Connect to device with adb logcat
      3. Configure site to be school.moodledemo.net
      4. Close and reopen app
      5. Look in logcat to see failing requests

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            alexmorris Alexander Morris
            Participants:
            Component watchers:
            Votes:
            1 Vote for this issue
            Watchers:
            5 Start watching this issue

              Dates

              Created:
              Updated: