fix: Chrome browser console warning about unsafe header access-control-expose-headers when calling Cloud Function
#2095
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…o avoid Chrome console warning
Thanks for opening this pull request! |
mortenmo
changed the title
xhr.getResponseHeader to avoid Chrome console warningxhr.getResponseHeader to avoid Chrome console warning
|
I will reformat the title to use the proper commit message syntax. |
parse-github-assistant
bot
changed the title
xhr.getResponseHeader to avoid Chrome console warningxhr.getResponseHeader to avoid Chrome console warning
mtrezza
changed the title
xhr.getResponseHeader to avoid Chrome console warningRefused to get unsafe header "access-control-expose-headers" when calling Cloud Function
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## alpha #2095 +/- ##
===========================================
+ Coverage 99.98% 100.00% +0.01%
===========================================
Files 61 64 +3
Lines 6185 6198 +13
Branches 1499 1503 +4
===========================================
+ Hits 6184 6198 +14
+ Misses 1 0 -1 ☔ View full report in Codecov by Sentry. |
mtrezza
reviewed
Mar 17, 2024
dplewis
suggested changes
Mar 20, 2024
|
Looking forward to seeing this error fixed! |
|
bump |
Member
|
@mortenmo any updates? |
Contributor
Author
|
Thanks for the reminder it fell off my mind. Should be updated with your suggestions. |
dplewis
suggested changes
Apr 14, 2024
Co-authored-by: Diamond Lewis <[email protected]> Signed-off-by: Manuel <[email protected]>
|
Really looking forward to this being merged |
mtrezza
reviewed
Apr 17, 2024
Member
mtrezza
left a comment
mtrezza
left a comment
There was a problem hiding this comment.
Is it possible to add a test for this change?
Contributor
Author
|
I wrote some tests. One mimicking the Chrome issue causing the log error. It fails if you revert RESTController and succeeds in this branch. |
mtrezza
requested changes
Apr 18, 2024
Signed-off-by: Manuel <[email protected]>
Signed-off-by: Manuel <[email protected]>
mtrezza
requested changes
Apr 18, 2024
Signed-off-by: Manuel <[email protected]>
mtrezza
changed the title
Refused to get unsafe header "access-control-expose-headers" when calling Cloud Functionaccess-control-expose-headers when calling Cloud Function
mtrezza
approved these changes
Apr 18, 2024
Member
mtrezza
left a comment
mtrezza
left a comment
There was a problem hiding this comment.
Looks good, waiting for CI to pass...
mtrezza
changed the title
access-control-expose-headers when calling Cloud Functionaccess-control-expose-headers when calling Cloud Function
Member
|
Could you just fix the lint errors? |
Member
|
There are still 2 open conversations, could you please reply there to see whether they can be closed? |
Contributor
Author
Done |
Member
|
Thanks for closing the conversations. |
parseplatformorg
pushed a commit
that referenced
this pull request
Apr 22, 2024
# [5.1.0-alpha.5](5.1.0-alpha.4...5.1.0-alpha.5) (2024-04-22) ### Bug Fixes * Chrome browser console warning about unsafe header `access-control-expose-headers` when calling Cloud Function ([#2095](#2095)) ([7b73c03](7b73c03))
Contributor
|
🎉 This change has been released in version 5.1.0-alpha.5 |
parseplatformorg
pushed a commit
that referenced
this pull request
May 16, 2024
# [5.1.0-beta.1](5.0.0...5.1.0-beta.1) (2024-05-16) ### Bug Fixes * `Parse.GeoPoint.current` returns `undefined` ([#2127](#2127)) ([3860535](3860535)) * Chrome browser console warning about unsafe header `access-control-expose-headers` when calling Cloud Function ([#2095](#2095)) ([7b73c03](7b73c03)) * Live Query not working on Expo React Native ([#2109](#2109)) ([7a89665](7a89665)) * Local datastore throws error when `Parse.Query.notEqualTo` is set to `null` ([#2102](#2102)) ([6afd32a](6afd32a)) * Multiple object updates of nested keys overwrite each other ([#1451](#1451)) ([fa4341a](fa4341a)) * Pending updates to nested field causes `ParseObject.toJSON()` to return incorrect object ([#1453](#1453)) ([23cc573](23cc573)) * Remove circular dependencies ([#2125](#2125)) ([b415165](b415165)) ### Features * Add password validation for user with unverified email via `Parse.User.verifyPassword` using master key and option `ignoreEmailVerification: true` ([#2076](#2076)) ([b0adf7e](b0adf7e)) * Add support for setting `Parse.ACL` from json ([#2097](#2097)) ([72bc9ac](72bc9ac)) * Allow setting custom queue for handling offline operations via `Parse.EventuallyQueue` ([#2106](#2106)) ([f92e4d4](f92e4d4)) * Improve installation object `Parse.Installation.currentInstallation` to support web push notifications ([#2119](#2119)) ([4fc62ce](4fc62ce)) * Lazy load `Parse.CoreManager` controllers to add support for swappable `CryptoController`, `LocalDatastoreController`, `StorageController`, `WebSocketController`, `ParseLiveQuery` ([#2100](#2100)) ([fbd0ab1](fbd0ab1))
Contributor
|
🎉 This change has been released in version 5.1.0-beta.1 |
parseplatformorg
pushed a commit
that referenced
this pull request
May 16, 2024
# [5.1.0](5.0.0...5.1.0) (2024-05-16) ### Bug Fixes * `Parse.GeoPoint.current` returns `undefined` ([#2127](#2127)) ([3860535](3860535)) * Chrome browser console warning about unsafe header `access-control-expose-headers` when calling Cloud Function ([#2095](#2095)) ([7b73c03](7b73c03)) * Live Query not working on Expo React Native ([#2109](#2109)) ([7a89665](7a89665)) * Local datastore throws error when `Parse.Query.notEqualTo` is set to `null` ([#2102](#2102)) ([6afd32a](6afd32a)) * Multiple object updates of nested keys overwrite each other ([#1451](#1451)) ([fa4341a](fa4341a)) * Pending updates to nested field causes `ParseObject.toJSON()` to return incorrect object ([#1453](#1453)) ([23cc573](23cc573)) * Remove circular dependencies ([#2125](#2125)) ([b415165](b415165)) ### Features * Add password validation for user with unverified email via `Parse.User.verifyPassword` using master key and option `ignoreEmailVerification: true` ([#2076](#2076)) ([b0adf7e](b0adf7e)) * Add support for setting `Parse.ACL` from json ([#2097](#2097)) ([72bc9ac](72bc9ac)) * Allow setting custom queue for handling offline operations via `Parse.EventuallyQueue` ([#2106](#2106)) ([f92e4d4](f92e4d4)) * Improve installation object `Parse.Installation.currentInstallation` to support web push notifications ([#2119](#2119)) ([4fc62ce](4fc62ce)) * Lazy load `Parse.CoreManager` controllers to add support for swappable `CryptoController`, `LocalDatastoreController`, `StorageController`, `WebSocketController`, `ParseLiveQuery` ([#2100](#2100)) ([fbd0ab1](fbd0ab1))
Contributor
|
🎉 This change has been released in version 5.1.0 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request
Issue
#2059
Closes: #2059
Approach
Based on https://trackjs.com/blog/refused-unsafe-header/
Chrome shows a console error when accessing a non-existant header. Checking if header is available before calling that method.