CORS blocks wp-admin CSS

  • anderslinn

    (@anderslinn)


    5 years, 9 months ago

    Several CSS files fail when in admin mode.
    For example:
    twocatsinacaravan.xyz/:1 Access to CSS stylesheet at ‘https://s1.wp.com/wp-content/mu-plugins/admin-bar/wpcom-admin-bar.css’ from origin ‘https://twocatsinacaravan.xyz’ has been blocked by CORS policy: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.
    wpcom-admin-bar.css:1 Failed to load resource: net::ERR_FAILED

    Access-Control-Allow-Origin is set to *
    Any ideas?
    I also get the warnings for cookies from wp not sure if related

    A cookie associated with a cross-site resource at https://wp.com/ was set without the SameSite attribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set with SameSite=None and Secure.

    Great plugin by the way!

    • This topic was modified 5 years, 9 months ago by anderslinn.
    • This topic was modified 5 years, 9 months ago by anderslinn.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter anderslinn

    (@anderslinn)

    5 years, 9 months ago

    my htaccess
    https://pastebin.com/5vkZRrTV

    Plugin Author Dimitar Ivanov

    (@zinoui)

    5 years, 9 months ago

    Hi @anderslinn

    I assume that the HTTP Headers plugin is installed on twocatsinacaravan.xyz, but you need the Access-Control-Allow-Origin header to be sent from https://s1.wp.com.

    The warning is about cookies sent by instagram.com and cloudflare.com. Since you haven’t control on that sites you can’t do anything to suppress this warning.

    Thread Starter anderslinn

    (@anderslinn)

    5 years, 9 months ago

    Thanks. Do you know of any way of either excluding/allow those domains which lacks Access-Control-Allow-Origin header or a way to inject Access-Control-Allow-Origin header on those requests?

    • This reply was modified 5 years, 9 months ago by anderslinn.
Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘CORS blocks wp-admin CSS’ is closed to new replies.