vinlee19 opened a new pull request, #25107: URL: https://github.com/apache/doris/pull/25107
## Proposed changes 1. creating this cookie without the "secure" flag 2. enabling CORS is safeļ¼The Access-Control-Allow-Origin header should be set only for a trusted origin and for specific resources. Thus, you can set `access_control_allowed_origin_domain="trustedwebsite.com"`. By default, any domain name is allowed cross-domain access,`access_control_allowed_origin_domain = "*"` <!--Describe your changes.--> ## Further comments If this is a relatively large or complex change, kick off the discussion at [[email protected]](mailto:[email protected]) by explaining why you chose the solution you did and what alternatives you considered, etc... -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
