AMP Email Playground 的正确 AMP-Access-Control-Allow-Source-Origin 响应 header 是什么?
What is the correct AMP-Access-Control-Allow-Source-Origin response header for AMP Email Playground?
amp-email "security requirements" 的文档指出:
All responses must echo the origin and __amp_source_origin values from above if they are valid:
Access-Control-Allow-Origin: https://amp.gmail.dev
AMP-Access-Control-Allow-Source-Origin: amp@gmail.dev
Access-Control-Allow-Source-Origin: AMP-Access-Control-Allow-Source-Origin
If the response doesn't contain these values, the CORS request fail, resulting in a browser console warning message.
我正在 playground 中测试 amp-list 的使用,我的回复包含这些 header。但是,数据没有出现,并且在控制台中出现以下错误: Request xhr failed: The amp-access-control-allow-source-origin must be equal to the amp source origin sent in the request. 请求中提供的 amp_source_origin 是预期的 amp@gmail.dev。
这是相关回复的副本 headers I return:
Access-Control-Allow-Origin: https://amp.gmail.dev
Access-Control-Allow-Source-Origin: AMP-Access-Control-Allow-Source-Origin
Amp-Access-Control-Allow-Source-Origin: amp@gmail.dev
我还需要提供一些额外的header吗?
Gmail AMP Playground 中 CORS 的正确 headers 如下:
Access-Control-Allow-Origin: https://amp.gmail.dev
AMP-Access-Control-Allow-Source-Origin: amp@gmail.dev
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Gmail 的文档最初有一个错误,其中错误地使用了 Access-Control-Allow-Source-Origin 而不是 Access-Control-Expose-Headers,但现在已修复。
amp-email "security requirements" 的文档指出:
All responses must echo the origin and __amp_source_origin values from above if they are valid:
Access-Control-Allow-Origin: https://amp.gmail.dev
AMP-Access-Control-Allow-Source-Origin: amp@gmail.dev
Access-Control-Allow-Source-Origin: AMP-Access-Control-Allow-Source-Origin
If the response doesn't contain these values, the CORS request fail, resulting in a browser console warning message.
我正在 playground 中测试 amp-list 的使用,我的回复包含这些 header。但是,数据没有出现,并且在控制台中出现以下错误: Request xhr failed: The amp-access-control-allow-source-origin must be equal to the amp source origin sent in the request. 请求中提供的 amp_source_origin 是预期的 amp@gmail.dev。
这是相关回复的副本 headers I return:
Access-Control-Allow-Origin: https://amp.gmail.dev
Access-Control-Allow-Source-Origin: AMP-Access-Control-Allow-Source-Origin
Amp-Access-Control-Allow-Source-Origin: amp@gmail.dev
我还需要提供一些额外的header吗?
Gmail AMP Playground 中 CORS 的正确 headers 如下:
Access-Control-Allow-Origin: https://amp.gmail.dev
AMP-Access-Control-Allow-Source-Origin: amp@gmail.dev
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Gmail 的文档最初有一个错误,其中错误地使用了 Access-Control-Allow-Source-Origin 而不是 Access-Control-Expose-Headers,但现在已修复。