Skip to content
This repository has been archived by the owner on Feb 12, 2024. It is now read-only.

made post work with dropzone.js #99

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

killerham
Copy link

Some CORS headers were missing for use with dropzone.js post functionality when using presigned post.

@seichner
Copy link

seichner commented May 5, 2015

@killerham we ran into the same problem some weeks ago: this is better solved by using an updated dropzonejs so that you can disable these headers. @phoet fixed this in dropzone/dropzone@441bb4c, it's already in dropzone stable. Just needs a new release with compiled files.

@phoet
Copy link

phoet commented May 6, 2015

i'm not super familiar with the s3 bucket configuration, but AFAIK you can set the allowed headers etc yourself: http://docs.aws.amazon.com/AmazonS3/latest/dev/cors.html

so it would be good to either be less restrictive (allow * for all the things) or make those options configurable. same is true for content-type.

@pickhardt
Copy link
Collaborator

pickhardt commented Dec 22, 2016

I think changing it to "*" would be best. @killerham Hamed, what do you think?

@killerham
Copy link
Author

Making it * would be easier I think

@korya
Copy link

korya commented Jan 31, 2017

+1 for '*' in allowed headers. I need to support multi-part uploads using evaporate-js. The latter relies on 'x-amz-content-sha256' header.

Update: evaporate-js uses 3 headers: Content-MD5, X-AMZ-Content-SHA256 and X-AMZ-Date.
Additionally, Chrome Canaray does not support today a wildcard '*' in 'Access-Control-Allow-Headers', so I had to list all the headers manually.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants