archy

lfg2025/archy

Fork 0

Commit Graph

Author	SHA1	Message	Date
archipelago	1db720af13	fix(lnd): repair fleet-wide CORS on LND connect-wallet endpoints (B5) The LND wallet UI (served on its own app port) fetches /lnd-connect-info and /proxy/lnd/* cross-origin, so both need correct CORS headers. (a) Older nginx configs add their own Access-Control-Allow-Origin in the /lnd-connect-info location on top of the one the backend sets, yielding a DUPLICATE header that browsers reject ("multiple values"). bootstrap now strips that redundant nginx add_header (backend owns CORS). (b) /proxy/lnd/* returned a 401 with no CORS headers when the session check failed, so the browser saw an opaque CORS error instead of a readable 401. Add unauthorized_cors() and use it on that path. Adds tests/production-quality/ (bug tracker + lnd-cors-test.sh harness). Verified: harness 4/4 on .116, .198, .103. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-15 11:31:14 -04:00

Author

SHA1

Message

Date

archipelago

1db720af13

fix(lnd): repair fleet-wide CORS on LND connect-wallet endpoints (B5)

The LND wallet UI (served on its own app port) fetches /lnd-connect-info
and /proxy/lnd/* cross-origin, so both need correct CORS headers.

(a) Older nginx configs add their own Access-Control-Allow-Origin in the
    /lnd-connect-info location on top of the one the backend sets, yielding
    a DUPLICATE header that browsers reject ("multiple values"). bootstrap
    now strips that redundant nginx add_header (backend owns CORS).
(b) /proxy/lnd/* returned a 401 with no CORS headers when the session
    check failed, so the browser saw an opaque CORS error instead of a
    readable 401. Add unauthorized_cors() and use it on that path.

Adds tests/production-quality/ (bug tracker + lnd-cors-test.sh harness).
Verified: harness 4/4 on .116, .198, .103.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-15 11:31:14 -04:00

1 Commits