Skip to content

Access-Control-Allow-Origin #267

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
dni merged 4 commits into from
Feb 5, 2026
Merged

Access-Control-Allow-Origin #267

Changes from 1 commit
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
0d3f40d
Access-Control-Allow-Origin
shocknet-justin Jun 16, 2024
90014dd
Apply suggestions from code review
shocknet-justin Jun 17, 2024
4273c0e
Update 01.md
shocknet-justin Jun 17, 2024
59ba7da
Update 01.md
shocknet-justin Jun 17, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Update 01.md
  • Loading branch information
@shocknet-justin
shocknet-justin authored Jun 17, 2024
commit 59ba7da73719ca781bbfc85851b4212a4271d8d3
2 changes: 1 addition & 1 deletion 01.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,7 @@ Neither status codes or any HTTP Header has any meaning. Servers may use whateve

## CORS Browser Compatibility

Application endpoints or Reverse Proxy directives that are accessed when using the LNURL must respond to `OPTIONS` requests on that endpoint. In their replies to `GET` and `OPTIONS`, they must set the header `Access-Control-Allow-Origin: *` for LNURL's to work with browser-based wallets, services and other webapps. If they set the `Access-Control-Allow-Methods` header, they must set in such a way that `GET` requests are permitted.
Application endpoints (or their defined Reverse Proxy directives) accessed when using the LNURL must respond to `GET` having set the header `Access-Control-Allow-Origin: *` for LNURL's to work with browser-based wallets, services and other webapps. If they set the `Access-Control-Allow-Methods` header, they must set in such a way that `GET` requests are permitted.

## Decoding examples

Expand Down