Safari Web Extension CORS Access-Control-Allow-Origin error

Safari & Web General
THEK OP
Created Mar ’23
Replies 1
Boosts 0
Views 1.9k
Participants 1

Hey, I'm currently converting a chrome extension to Safari. From the background script I make a number of API calls to the server.

I'm hitting an issue where some requests are failing with the following: Failed to load resource: Origin safari-web-extension://<id> is not allowed by Access-Control-Allow-Origin. Status code: 200.

The reason I say some is that it's appears to be happening at random. I tested with a call being made every minute. Sometimes all requests fail with the above, sometimes 1 will pass and the rest fail. It doesn't seem to be consistent across GET, POST or PUT requests either.

The CORS configuration on the server simply reflects the caller's origin for a CORS request so I can support calls from the extension. An example GET call from the extension is below, I send the token but also add withCredentials to support other browsers.

fetch(&#039;&#x2F;url&#039;, {
   headers: {
        &#039;Authorization: Bearer &lt;token>&#039;
   },
   withCredentials: true
}

Has anyone else hit similar issues? This all works perfectly in Chrome/Edge, Safari seems to be the anomaly here.

Answered by THEK in 749271022

It appears this was a bug in Safari and has been fixed by 16.4.

  • Fixed CORS issue when doing fetch requests from a background service worker.
Replies  1
Boosts  0
Views  1.9k
Participants  1
THEK OP
Mar ’23
Accepted Answer

It appears this was a bug in Safari and has been fixed by 16.4.

  • Fixed CORS issue when doing fetch requests from a background service worker.
0
Safari Web Extension CORS Access-Control-Allow-Origin error
First post date Last post date
 
 
Q