Hello all,
in our system we have to use cross-origin isolation, including 'Cross-Origin-Embedder-Policy: require-corp' policy.
Therefore when I'm loading Status Embed frame the browser requires 'Cross-Origin-Resource-Policy: cross-origin' header in a response.
It is absent so frame is not loaded.
How is Status Embed supposed to be loaded in this case? May CORP header be added, or we should change something on our side?
Kind regards
Hello Maksim,
This is Jesse from the Statuspage support team. Welcome to the community and thanks for reaching out about how you would work with CORP headers. If you are using the recommended status embed then this is not something that can really be changed since it is a pre-built tool.
In your case, it would make sense to create a custom status embed instead. Essentially, it's just calling our Status API and you could modify it from there. Hopefully that is helpful for you on this!
Regards,
Jesse
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.