Google Cloud CDN not accepting signed cookies via browser
Google Cloud CDN is set with a backend bucket which is configured and working for signed cookies when called via curl.
I have the Cloud-CDN-Cookie set correctly in the browser, but when calling the CDN, the Request Headers don't include it (No Cookie header present).
When called in the browser, with a fetch like this:
fetch('https://<bucket-ip>/test/test.png', {
method: 'GET',
credentials: 'include',
})
The browser returns the following error:
Access to fetch at 'https:///test/test.png' from origin 'http://localhost:5173' has been blocked by CORS policy: The value of the 'Access-Control-Allow-Credentials' header in the response is '' which must be 'true' when the request's credentials mode is 'include'.
Does Google CDN need to return this 'Access-Control-Allow-Credentials' header for it to work? I wasn't able to find anywhere how to add this header in the response from Google CDN.
I've found a way to make the cdn send the response headers I needed.
In this section:
You can set the headers you need like this:
- Custom Service Account with KFP pipelines in Vertex AI
- Error uploading file to google cloud storage
- Cloud function is not triggered by pub/sub topic
- Java application unable to find ADC when Workload Identity is enabled on GKE cluster
- Service account with Workspace-authorized domain-wide delegation gets error "Not Authorized to access this resource/api" when running cloud function
- How to download a pushed Odoo release and upload to Github
- GCP authentication when testing a container in the local development environment
- GAE: find project name by project number
- Google Cloud functions v2 eventarc - How to Track User Context for Deletions in Firebase Realtime Database
- Google Cloud Bigtable vs Google Cloud Datastore
- Batch job submission error "Failed to process all documents", uris seem correct?
- 401 Unauthorized when installing Python package from Artifacts registry for Google Build
- Google Cloud Storage request blocked by CORS: not allowed by Access-Control-Allow-Origin
- Accessing users account with service account
- Firestore exception occurred in retry method that was not classified as transient
- Managed Service Provider on Google Cloud Platform
- Stripe Error: No signatures found matching the expected signature for payload
- Error --accelerator unrecognized argument when launching gcloud beta ai-platform versions create API
- invalid_request when calling https://sts.googleapis.com/v1/token API
- How to upload a file to Google Cloud Storage on Python 3?
- How to use Puppeteer in 2nd gen Cloud Functions?
- Migrate GCP Cloud Kms key from single region to multi regional
- How can I invalidate Google Cloud CDN cache from my express server?
- Pattern for handling deferred tasks in a GCP Cloud Function
- Certmanager tries to use HTTPS inside the cluster and fails when it gets self signed certificates
- re-define keyboard behavior for `GCP - vertex AI - freefrom`
- Error: 10: Developer console is not set up correctly (Not Using Firebase) (One Tap sign-up)
- How to create GCP Cloud SQL IAM Users
- How to create temporary tables in Spanner
- How to return the COUNT of two different parameters?