Project:
| View Issue Details[ Jump to Notes ] | [ Issue History ] [ Print ] | |||||||
| ID | ||||||||
| 0053672 | ||||||||
| Type | Category | Severity | Reproducibility | Date Submitted | Last Update | |||
| defect | [Openbravo ERP] C. Security | major | have not tried | 2023-10-17 10:10 | 2025-03-27 12:02 | |||
| Reporter | ebecerra | View Status | public | |||||
| Assigned To | Triage Platform Base | |||||||
| Priority | normal | Resolution | duplicate | Fixed in Version | ||||
| Status | closed | Fix in branch | Fixed in SCM revision | |||||
| Projection | none | ETA | none | Target Version | ||||
| OS | Any | Database | Any | Java version | ||||
| OS Version | Database version | Ant version | ||||||
| Product Version | SCM revision | |||||||
| Merge Request Status | ||||||||
| Review Assigned To | ||||||||
| OBNetwork customer | No | |||||||
| Web browser | ||||||||
| Modules | Core | |||||||
| Support ticket | ||||||||
| Regression level | ||||||||
| Regression date | ||||||||
| Regression introduced in release | ||||||||
| Regression introduced by commit | ||||||||
| Triggers an Emergency Pack | No | |||||||
| Summary | 0053672: HTTP PUT and HTTP DELETE should accept CORS | |||||||
| Description | Nowadays the HTTP methods allowed for cross-domain calls are POST, GET and OPTIONS. While developing 53527 we realized that we need to allow request using CORS for PUT and DELETE | |||||||
| Steps To Reproduce | CRM connector (without coding) launches requests against an external system that can be configured in a different domain. The CRM that we prepared for testing is running on OB but when we try to use it from a development environment (POS executed in npm server) requests to the back office (CRM example for testing purposes) are in another domain so these operations (PUT, DELETE) does not work | |||||||
| Proposed Solution | See attachment image | |||||||
| Tags | No tags attached. | |||||||
| Attached Files |  Cors.png [^] (62,169 bytes) 2023-10-17 10:10
| |||||||
 Relationships [ Relation Graph ]
[ Dependency Graph ]
|
|
 Relationships |
|
Notes |
|
|
(0177387) hgbot (developer) 2025-03-27 12:02 |
Issue exported to Jira: https://openbravo.atlassian.net/browse/RM-24119 [^] |
|
Notes |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2023-10-17 10:10 | ebecerra | New Issue | |
| 2023-10-17 10:10 | ebecerra | Assigned To | => Triage Platform Base |
| 2023-10-17 10:10 | ebecerra | File Added: Cors.png | |
| 2023-10-17 10:10 | ebecerra | OBNetwork customer | => No |
| 2023-10-17 10:10 | ebecerra | Modules | => Core |
| 2023-10-17 10:10 | ebecerra | Triggers an Emergency Pack | => No |
| 2023-10-25 15:27 | guilleaer | Summary | Must be included the HTTP methods: PUT and DELETE for CORS validations => HTTP PUT and HTTP DELETE should accept CORS |
| 2023-10-25 15:27 | guilleaer | Description Updated | View Revisions |
| 2023-10-25 15:27 | guilleaer | Steps to Reproduce Updated | View Revisions |
| 2023-10-25 15:30 | guilleaer | Description Updated | View Revisions |
| 2023-10-25 15:30 | guilleaer | Steps to Reproduce Updated | View Revisions |
| 2025-03-27 12:02 | hgbot | Note Added: 0177387 | |
| 2025-03-27 12:02 | hgbot | Status | new => closed |
| 2025-03-27 12:02 | hgbot | Resolution | open => duplicate |
|
Issue History |
| Copyright © 2000 - 2009 MantisBT Group |
 |