DISCOURSE_ENABLE_CORS not impacting Nginx config

ckamps · October 13, 2015, 2:07am

I was able to modify the /etc/nginx/conf.d/discourse.conf file to include several Access-Control-... headers to avoid the Unknown error during log in when using SSO.

Now I want to trigger these Nginx settings via app.yml so that we don’t have to manually modify the Nginx config. However, when I specify the following settings in the environment section of app.yml and bootstrap via launcher, the Nginx config does not get updated.

Any idea as to what I am missing?

 ## Enable Cross-origin resource sharing so that SSO works properly
 DISCOURSE_ENABLE_CORS: true
 DISCOURSE_CORS_ORIGIN: '*'

eviltrout · October 13, 2015, 3:53pm

The CORS headers are added via Rack, not nginx. The config should not be updated by adding those settings, but your site should start serving the correct headers.

ckamps · October 13, 2015, 9:03pm

Excellent. Confirmed this is the case:

Topic		Replies	Views
What is the purpose of Settings -> Security -> CORS origins vs similar environment setting? Support	3	3659	November 19, 2015
No 'Access-Control-Allow-Origin' header is present despite setting DISCOURSE_ENABLE_CORS: true Support	7	1468	October 28, 2021
Setup Cross-Origin Resource Sharing (CORS) Self-Hosting how-to	1	1312	July 7, 2023
Adding HTTP Headers to Plugin in Development Dev	3	841	May 18, 2020
Enable CORS on localhost for DiscourseConnect SSO	0	613	January 12, 2024

DISCOURSE_ENABLE_CORS not impacting Nginx config

Related topics