Comments (17)
What browser (and version) are you using? There are changes that break older browsers (which is likely to appear on other sites).
from xwing.
from xwing.
Browse tochrome://version
; that should tell you what version you're running.
from xwing.
from xwing.
Strange, that should be compatible. What OS?
from xwing.
from xwing.
Did the login button ever work for you (and only stopped working recently)? If it never worked, you may have third party cookies disabled, which you'll need to allow. Otherwise, I'm not sure what's going on; does it work for other browsers on other machines?
from xwing.
from xwing.
In Chrome, while you have the builder open, hit F12 to open Developer Tools and click on the "Console" tab, then try to log in. What error messages (if any) do you see there?
from xwing.
from xwing.
Now I'm really confused; the response I'm getting from the backend does have the Access-Control-Allow-*
headers:
Does this happen for you on any other devices? Or in Incognito Mode (maybe something old is being cached)?
from xwing.
from xwing.
I also get an error:
Access to XMLHttpRequest at 'https://yasb-backend.herokuapp.com/methods' from origin 'http://geordanr.github.io' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
yasb-backend.herokuapp.com/methods:1 Failed to load resource: net::ERR_FAILED
geordanr.github.io/:1 Access to XMLHttpRequest at 'https://yasb-backend.herokuapp.com/ping' from origin 'http://geordanr.github.io' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
yasb-backend.herokuapp.com/ping:1 Failed to load resource: net::ERR_FAILED
geordanr.github.io/:1 Access to XMLHttpRequest at 'https://yasb-backend.herokuapp.com/settings' from origin 'http://geordanr.github.io' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
yasb-backend.herokuapp.com/settings:1 Failed to load resource: net::ERR_FAILED
from xwing.
Okay, this is weird. The error happens for me in incognito mode, but not in my normal browser.
If I try to simulate this with curl by sending different origins, I (correctly) get the access-control-*
headers. Simulating access from YASB 1.0:
$ curl -I -H 'Origin: https://geordanr.github.io' https://yasb-backend.herokuapp.com/methods
HTTP/1.1 200 OK
Date: Wed, 26 Feb 2020 06:04:37 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://geordanr.github.io
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Max-Age: 7200
Access-Control-Allow-Credentials: true
Content-Type: application/json
Content-Length: 50
Vary: Origin
X-Content-Type-Options: nosniff
Server: thin
Via: 1.1 vegur
Simulating from YASB 2.0:
$ curl -I -H 'Origin: https://raithos.github.io' https://yasb-backend.herokuapp.com/methods
HTTP/1.1 200 OK
Date: Wed, 26 Feb 2020 06:06:14 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://raithos.github.io
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Max-Age: 7200
Access-Control-Allow-Credentials: true
Content-Type: application/json
Content-Length: 50
Vary: Origin
X-Content-Type-Options: nosniff
Server: thin
Via: 1.1 vegur
Simulating from an unauthorized origin (note lack of headers):
$ curl -I -H 'Origin: https://somethingelse.github.io' https://yasb-backend.herokuapp.com/methods
HTTP/1.1 200 OK
Date: Wed, 26 Feb 2020 06:06:23 GMT
Connection: keep-alive
Content-Type: application/json
Content-Length: 50
Vary: Origin
X-Content-Type-Options: nosniff
Server: thin
Via: 1.1 vegur
The request headers I'm sending are identical between normal and incognito mode, except for the do not track dnt
header in normal, which doesn't appear to have any effect when I test with curl (normal is on the left, incognito on the right):
It doesn't matter whether I have cookies set in the yasb-backend.herokuapp.com
domain, same behavior.
I'm completely stumped. Anyone else have ideas?
from xwing.
Misclicked close
from xwing.
from xwing.
from xwing.
Related Issues (20)
- Gunner Slot Slave I
- Can you make it so that you can search up upgrade cards.
- CROC Missing Havy Laser Turet HOT 2
- Can't load saved squads HOT 6
- Create ability for players to mix and create non tournament teams, ie scum and republic ships...
- Log In Button Not Working at All HOT 1
- You should be able to make your own upgrade cards
- They should add more huge ships like the republic attack cruiser or a star destroyer
- If you change the language to german then back to english or any other language the 'your collection' button stays in german
- Login not working anymore HOT 1
- “Log in” button not working on current ios chrome browser or current windows 10 chrome browser
- Log-in Button Not Working
- Can not bring up saved squads of saved ships
- Can I get my squadrons to come up and I’m unable to logon
- Log In
- Exceptions logged on start up
- Feature Request
- Feature Request HOT 1
- Cannot log in HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from xwing.