diff --git a/docs/apex-setup.md b/docs/apex-setup.md index c4f5d55..9596137 100644 --- a/docs/apex-setup.md +++ b/docs/apex-setup.md @@ -38,9 +38,9 @@ In `Shared Components > Application Processes` create a new application process Name | Setting | Comment --- | --- | --- +Name | `OOS APEX Front-End Boost Config` | Sequence | `-999` | Ensures this happens first Process Point | `On Load: Before Header (page template header)` | -Name | `OOS APEX Front-End Boost Config` | Source | *see below* | Build Option | `DEV_ONLY` | For security reasons only want this to happen in a controlled development environment diff --git a/docs/cors.md b/docs/cors.md index 8dd493e..38693e5 100644 --- a/docs/cors.md +++ b/docs/cors.md @@ -7,8 +7,12 @@ Starting from ORDS `3.0.3`, a new security rule concerning `Cross Origin Sharing This occurs when the server is using ORDS `3.0.3`, `3.0.4` or `3.0.5`. -For Apache, please follow the message and set the ProxyPreserveHost parameter to On. - +For Apache, there are 2 options + 1- set the ProxyPreserveHost parameter to On. + 2- RequestHeader set Origin http://:/ + For example : RequestHeader set Origin http://apexworld.com:80/ + - This forces the origin http header to a value. + Otherwise until then please use ORDS `3.0.2` or less, as the error does **NOT** occur. Here are some related forum topics: