Forum Discussion

Hugo_Frauches_2's avatar
Hugo_Frauches_2
Icon for Cirrus rankCirrus
Dec 11, 2018

ASM Transparent mode blocking CORS requests

Hello community,   I would like to know if anyone have seen or had an issue with CORS (Cross-Origin Resource Sharing) and ASM, i have an problem with Javascript request that its been blocked by CO...
application delivery
ASM Advanced WAF
security
  • Alex_Nimo_26616's avatar
    Alex_Nimo_26616
    Dec 16, 2018

    Hi Hugo,

     

    Thanks for the update. I agree, this is unacceptable. Never encountered something like this with ASM and I have dealt with CORS many times before. You can play with the CORS configuration through ASM or with an irule, I think that this is what I will do.

     

Jim_M's avatar
Jim_M
Icon for Cirrus rankCirrus
Oct 14, 2020

The bugfix says its fixed in 14.1.2.1. But i still see it in 14.1.2.6

  • Ivan_Chernenkii's avatar
    Ivan_Chernenkii
    Icon for Employee rankEmployee
    Oct 29, 2020

    What build do you have?

    Do you see the same behavior - no removing CORS headers without ASM and removing, in case of attach ASM policy?

    What do you have in "HTML5 Cross-Domain Request Enforcement" tab for URL with CORS headers?

     

    Thanks, Ivan