[
https://issues.apache.org/jira/browse/CXF-4167?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13227959#comment-13227959
]
Sergey Beryozkin commented on CXF-4167:
---------------------------------------
Hi,
actually, CrossOriginResourceSharingFilter has the property allowOrigins,
however it's always overridden if the annotation is set, so I'll apply a minor
fix
> Configure CORS allowOrigins addresses in XML
> --------------------------------------------
>
> Key: CXF-4167
> URL: https://issues.apache.org/jira/browse/CXF-4167
> Project: CXF
> Issue Type: Improvement
> Components: JAX-RS Security
> Affects Versions: 2.5.2
> Environment: Any
> Reporter: Matt Bishop
>
> CORS support uses annotations exclusively define the shape of the CORS
> support. For most attributes, this is fine because it needs to be scoped to
> the methods. However, the actual origin servers needs to be configured in XML
> as it will likely change over time, and in specific deployments.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
