bolha.us

0 posts0 participants0 posts today

Parsingphase<a href="https://m.phase.org/tags/DailyBird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DailyBird</a> 🤖 Cory's Shearwater (Calonectris diomedea), 2nd November 2024 es: Pardela Cenicienta Mediterránea, fr: Puffin de Scopoli Rockport, Massachusetts Canon EOS R5, Canon RF 200-800mm f/6.3-9 + 1.4x teleconverter @ 454mm, 25% crop, 1/2000s, f/10, ISO 8000 <a href="https://m.phase.org/tags/Birds" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Birds</a> <a href="https://m.phase.org/tags/CorysShearwater" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CorysShearwater</a> <a href="https://m.phase.org/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CORS</a> <a href="https://m.phase.org/tags/HopeIsTheThingWithFeathers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HopeIsTheThingWithFeathers</a> <a href="https://m.phase.org/tags/DescribeYourImages" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DescribeYourImages</a>

Brandon H :csharp: :verified:via <a href="https://dotnet.social/@dotnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@dotnet</a> : .NET Aspire 9.1 is here with six great new dashboard features, and more!<a href="https://ift.tt/3niZ1yg" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://ift.tt/3niZ1yg</a> <a href="https://hachyderm.io/tags/DotNetAspire" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DotNetAspire</a> <a href="https://hachyderm.io/tags/DotNet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DotNet</a> <a href="https://hachyderm.io/tags/Aspire91" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Aspire91</a> <a href="https://hachyderm.io/tags/DashboardFeatures" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DashboardFeatures</a> <a href="https://hachyderm.io/tags/DeveloperCommunity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DeveloperCommunity</a> <a href="https://hachyderm.io/tags/SoftwareDevelopment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SoftwareDevelopment</a> <a href="https://hachyderm.io/tags/TechUpdates" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TechUpdates</a> <a href="https://hachyderm.io/tags/Localization" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Localization</a> <a href="https://hachyderm.io/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CORS</a> <a href="https://hachyderm.io/tags/DockerIntegration" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DockerIntegration</a> <a href="https://hachyderm.io/tags/UXImpro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UXImpro</a>…

Lanie Molinar Carmelo🚨 Help Needed: <a href="https://allovertheplace.ca/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CORS</a> and <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cloudflare</a> Access Issues with <a href="https://allovertheplace.ca/tags/Nextflux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Nextflux</a> + <a href="https://allovertheplace.ca/tags/MiniFlux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MiniFlux</a> Setup 🚨Hi everyone! I’m struggling with a <a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SelfHosted</a> setup and could really use some advice from the self-hosting community. Lol I've been trying to figure this out for hours with no luck. Here’s my situation:Setup<ul><li>MiniFlux: Running in <a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Docker</a> on a <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RaspberryPi500</a> (<a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Stormux</a>, based on <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ArchLinuxARM</a>).</li><li>Nextflux: Hosted on Cloudflare Pages.</li><li>Reverse Proxy: <a href="https://allovertheplace.ca/tags/Caddy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Caddy</a> (installed via AUR).</li><li>Cloudflare Access: Enabled for security and SSO.</li><li>Cloudflared: Also installed via AUR.</li><li>CORS Settings in Cloudflare Access: Configured to allow all origins, methods, and headers.</li></ul>What’s Working<ul><li>MiniFlux is accessible from my home network after removing restrictive CORS settings in both Caddy and MiniFlux.</li><li>Nextflux is properly deployed on Cloudflare Pages.</li></ul>The ProblemNextflux cannot connect to MiniFlux due to persistent CORS errors and authentication issues with Cloudflare Access. Here are the errors I’m seeing in the browser console:<ol><li>CORS Error:<code>Access to fetch at 'https://rss.laniecarmelo.tech/v1/me' from origin 'https://nextflux.laniecarmelo.tech' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.</code></li><li>Cloudflare Access Redirection:<pre><code>Request redirected to 'https://lifeofararebird.cloudflareaccess.com/cdn-cgi/access/login/rss.laniecarmelo.tech'. </code></pre></li><li>Failed to Fetch:<pre><code>Failed to fetch: TypeError: Failed to fetch. </code></pre></li></ol>What I’ve Tried<ol><li>Service Token Authentication:<ul><li>Generated a service token in Cloudflare Access for Nextflux.</li><li>Added <code>CF-Access-Client-Id</code> and <code>CF-Access-Client-Secret</code> headers in Caddy for <code>rss.laniecarmelo.tech</code>.</li><li>Updated Cloudflare Access policies to include a bypass rule for this service token.</li></ul></li><li>CORS Configuration:<ul><li>Tried permissive settings (<code>Access-Control-Allow-Origin: *</code>) in both Caddy and MiniFlux.</li><li>Configured Cloudflare Access CORS settings to allow all origins, methods, and headers.</li></ul></li><li>Policy Adjustments:<ul><li>Created a bypass policy for my home IP range and public IP.</li><li>Added an "Allow" policy for authenticated users via email/login methods.</li></ul></li><li>Debugging Logs:<ul><li>Checked Cloudflared logs, which show requests being blocked due to missing access tokens (<code>AccessJWTValidator</code> errors).</li></ul></li></ol>Current StateDespite these efforts:<ul><li>Requests from Nextflux are still being blocked by Cloudflare Access or failing due to CORS issues.</li><li>The browser console consistently shows "No 'Access-Control-Allow-Origin' header" errors.</li></ul>Goals<ol><li>Allow Nextflux (hosted on Cloudflare Pages) to connect seamlessly to MiniFlux (behind Cloudflare Access).</li><li>Maintain secure access to MiniFlux for other devices (e.g., my home network or mobile devices).</li></ol>My Environment<ul><li>Raspberry Pi 500 running Arch Linux ARM.</li><li>Both Caddy and Cloudflared are installed via AUR packages.</li><li>MiniFlux is running in Docker with the following environment variables:<code>CLOUDFLARE_SERVICE_AUTH_ENABLED=trueCLOUDFLARE_CLIENT_ID=<client-id>CLOUDFLARE_CLIENT_SECRET=<client-secret></code></li></ul>Relevant LogsFrom <code>cloudflared</code>:<pre><code>ERR error="request filtered by middleware handler (AccessJWTValidator) due to: no access token in request" </code></pre>From the browser console:<pre><code>Access to fetch at 'https://rss.laniecarmelo.tech/v1/me' has been blocked by CORS policy. </code></pre>Questions<ol><li>Is there a better way to configure CORS for this setup?</li><li>Should I be handling authentication differently between Nextflux and MiniFlux?</li><li>How can I ensure that requests from Nextflux include valid access tokens?</li></ol>Any help or advice would be greatly appreciated! 🙏<a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SelfHosting</a> <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cloudflare</a> <a href="https://allovertheplace.ca/tags/CaddyServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CaddyServer</a> <a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Docker</a> <a href="https://allovertheplace.ca/tags/RSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RSS</a> <a href="https://allovertheplace.ca/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CORS</a> <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ArchLinuxARM</a> <a href="https://allovertheplace.ca/tags/CloudflarePages" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CloudflarePages</a> <a href="https://allovertheplace.ca/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tech</a> <a href="https://allovertheplace.ca/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#technology</a>

Parsingphase<a href="https://m.phase.org/tags/DailyBird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DailyBird</a> 🤖 Cory's Shearwater (Calonectris diomedea), 31st August 2024 es: Pardela Cenicienta Mediterránea, fr: Puffin de Scopoli Stellwagen Bank NMS, Scituate, Massachusetts Canon EOS R5, Canon RF 200-800mm f/6.3-9 @ 324mm, 5% crop, 1/2000s, f/7.1, ISO 500 <a href="https://m.phase.org/tags/Birds" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Birds</a> <a href="https://m.phase.org/tags/CorysShearwater" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CorysShearwater</a> <a href="https://m.phase.org/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CORS</a> <a href="https://m.phase.org/tags/HopeIsTheThingWithFeathers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HopeIsTheThingWithFeathers</a> <a href="https://m.phase.org/tags/DescribeYourImages" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DescribeYourImages</a>

jub0bs📢 New blog post: Programmatic handling of CORS-configuration errors with jub0bs/cors<a href="https://jub0bs.com/posts/2025-01-28-programmatic-handling-of-cors-configuration-errors/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://jub0bs.com/posts/2025-01-28-programmatic-handling-of-cors-configuration-errors/</a><a href="https://infosec.exchange/tags/golang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#golang</a> <a href="https://infosec.exchange/tags/cors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cors</a>

Recent searches

Search options

Administered by:

Server stats:

#cors