Can't set content length and thus cors problem? | 7TV | Page 1

static willow Sep 14, 2023, 4:49 AM

#

I've tried on Firefox, Edge, and a chromium based browser on my phone, cant seem to upload anything.

The resource at “https://7tv.app/assets/index-cd494667.js” preloaded with link preload was not used within a few seconds. Make sure all attributes of the preload tag are set correctly. create
Attempt to set a forbidden header was denied: Content-Length EmoteUpload.vue:248:32
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://7tv.io/v3/emotes. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing). Status code: 413.

Interestingly, this happens priror to the check if the user is currently logged in, as this happens if im logged in or not.

magic vine Sep 14, 2023, 4:56 AM

#

what are you trying to do? uploading an emote?

static willow Sep 14, 2023, 4:57 AM

#

yes

#

also there should be a client side check before the post request to save bandwith but im not gonna pr that :)

#

currently the content is uploaded along with the client information which is kinda a vulnerability

#Can't set content length and thus cors problem?