Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Deleted user
0 / 0 points
Next:
badges earned

Your Points Tracker
Challenges
Leaderboard
  • Global
  • Feed

Badge for your thoughts?

You're enrolled in our new beta rewards program. Join our group to get the inside scoop and share your feedback.

Join group
Recognition
Give the gift of kudos
You have 0 kudos available to give
Who do you want to recognize?
Why do you want to recognize them?
Kudos
Great job appreciating your peers!
Check back soon to give more kudos.

Past Kudos Given
No kudos given
You haven't given any kudos yet. Share the love above and you'll see it here.

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Site completely broken with CORS rejected issues in firefox? Edited

I'm completely unable to use firefox I get dozens of errors like

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://jira-frontend-static.prod.public.atl-paas.net/assets-brotli/vendor~31ecd969.8c519aa0eb248d60cafd.8.js. (Reason: CORS request did not succeed).

 

I'm just browsing to the site. Firefox url ->> <site>.atlassian.net ->> Does not load ->> console errors

 

 

1 answer

This firefox add-on fixes it: https://addons.mozilla.org/en-US/firefox/addon/cross-domain-cors/

 

This is a CORs issue. I believe that Firefox has implemented CORs correctly and atlassian is broke. 

 

Top notch support btw

BTW, the fact add-on fixes it is a BAD thing.

(Atlassian's top notch support just emailed me that there was a fix to my problem)

lol I just got a badge for first accepted answer.

John Funk Community Leader Jun 23, 2020

Hey Andrew - have you entered a support ticket with Atlassian? 

@Andrew MainlandWhat was the fix? I still see the issue with the latest version of firefox.

The "fix" that I put above was only to confirm that this is a problem that atlassian needs to address.

That "fix" works by overriding Firefox's security mechanism (turning off CORS completely) What I think should happen is that the devs at atlassian head over to mozilla's documentation read it and then adjust the headers accordingly.  

Had this been my company I do not imagine the end user would notice this bug for longer than 1 hour max.

I had exactly the same problem - thanks for the solution

Same here, but with another CDN:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://a.trellocdn.com/prgb/dist/br/snowplow.0949d401c08948310f2f.js. (Reason: CORS request did not succeed).

And more of those on the same domain.

The board in question does *not* have the access-control-allow-origin header set.

This really needs fixing (and it shocks me that other browsers, such as chrome, do let you through, in absence of access-control-allow-origin header).

It's obvious that Atlassian either doesn't care, doesn't "get it".

& If they fixed this tomorrow, I'd have to recommend switching to another product.

Eventually there is going to be another security bug and we'd have to expect the same response.

It's there a ticket to follow? This is really annoying

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
TAGS
Community showcase
Published in Confluence

🥓🙅🏻‍♀️ Meet-less May Badge!

Hello Confluence Community!  What if i told you that you could have a healthier life and be 100% meet-less? This month, we're promoting a healthy, balanced work diet with Confluence. (Read m...

326 views 3 17
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you