Skip to content

Add support for unauthenticated OPTIONS (preflight) requests in Istio AuthorizationPolicy resources to allow CORS

Nicolas Heitz requested to merge heitz/allow-options-requests into master

The goal of this MR is to add support for unauthenticated OPTIONS (preflight) requests in Istio AuthorizationPolicy resources to allow CORS. Currently, single-page applications such as Angular apps are not able to call the OSDU APIs due to Istio rejecting unauthenticated OPTIONS requests sent by the user's browser.

Merge request reports