till/managarten
1
0
Fork 0
mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-23 12:26:43 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
managarten/apps/mana/apps/web/static/textures/paper
History
Till JS 7ba058c017 fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 
When users type 'mana.how' (no scheme), Safari and other browsers default
to HTTP. Cloudflare/cloudflared serves the page over HTTP without
rewriting the scheme. The browser then sends 'Origin: http://mana.how'
on every fetch, but mana-auth CORS only allows 'https://mana.how'.

Result: every auth request fails, the SSO check throws, AuthGate hangs
on the loading spinner forever, and the page never finishes loading.

Fix: detect HTTP requests in hooks.server.ts via cf-visitor /
x-forwarded-proto / event.url.protocol and 301-redirect to HTTPS before
serving any content. Localhost is exempted for dev.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-11 20:38:21 +02:00
..
cardboard-001.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
cardboard-002.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
LICENSE.txt fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-001.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-002.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-003.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-004.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-005.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00
paper-006.jpg fix(web): redirect HTTP to HTTPS to fix Safari CORS hang 2026-04-11 20:38:21 +02:00