Andrewcinebox@masto.hackers.town
Jul 2, 2026, 5:57 AMok you have to set no-cors in the fetch request :eyeroll:
ok you have to set no-cors in the fetch request :eyeroll:
wtf is even the point of cors.
If I dont want resources from another origin I will simply not request them? why do I need a gatekeeper?
@cinebox CORS is profoundly stupid. My trick is for page to call its own server which curls the URL it needs from a 3rd-party server. This is fine! Doing it in the page is not! It's no safer.
@cinebox Same-origin policy protects users from malicious origins that would attempt to access data from other origins. CORS exists for cases where one origin wants to explicitly allow it for another.