[wp-trac] [WordPress Trac] #37994: Preflight CORS check fails because of missing "Access-Control-Allow-Headers: Content-Type"

WordPress Trac noreply at wordpress.org
Fri Oct 28 09:10:20 UTC 2016

#37994: Preflight CORS check fails because of missing "Access-Control-Allow-
Headers: Content-Type"
 Reporter:  nuvoPoint     |       Owner:
     Type:  defect (bug)  |      Status:  new
 Priority:  normal        |   Milestone:  Awaiting Review
Component:  REST API      |     Version:  4.6.1
 Severity:  normal        |  Resolution:
 Keywords:                |     Focuses:

Comment (by jnylen0):

 We're currently patching this on WordPress.com - otherwise POST/PUT
 requests with `Content-Type: application/json` fail because they are not
 "simple requests" according to the [https://developer.mozilla.org/en-
 US/docs/Web/HTTP/Access_control_CORS#Overview CORS rules].  We should fix
 this in core instead of making people patch around it.

Ticket URL: <https://core.trac.wordpress.org/ticket/37994#comment:2>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform

More information about the wp-trac mailing list