Harsh Parekh
Harsh Parekh
PostsComments
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
If I whitelist OPTIONS requests, will the CF also parse following GET, POST requests of the same API call? We are using JWT to authorise user on the platform.
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
where should I be whitelisting them? on CF?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
@Leo Quick question. Although we disabled all security checks on API, while other endpoints in the application and main domain dev.app.com is still protected by CloudFlare, is this still a good idea? Alternatively, can I use HTTP Response Header Modification to dynamically add Access-Controll-Allow-Origin: https://dev.app.com header to each response matching api.dev.com? Would this be more approchable and secure implementation? Will it solve CORS error?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
Thumbs Up šŸ‘ this thread if you visit in future and find this helpful. Tags: CORS Error
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
For any one facing this issue, we did the following - Set up custom WAF rules for api.app.com Set action to Skip WAF components to skip: Security Levels and All Super Bot Fight Mode Rules I tried searching a lot on internet for a solution, but none were a simple answer. Everywhere things were complex and no one pointed to do this. Take care of your API on AWS or anywhere it is hosted.
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/30/2025 in #general-help
Missing HTTP Response Header Modification
neven mind. found it.
2 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
for all api.app.com
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
setting Security to Essentially off;
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
what feature should I use to set this up? Page Rules?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
what do you suggest @valkyrie_pilot ? We are not able to solve this issue. There are no blogs or community posts describing this issue in detail. What can we do?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
sad but true
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
I apologiesed earlier for pinging you šŸ™ . But needed some urgent help with this issue.
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
@Hello, Iā€™m Allie! sorry to ping you here but looking for some urgent help in this case. Trying to fix this from last one week but no luck. Will you please suggest a fix?
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
I visit dev.app.com > Challenge Page Solved > Enter login credentails > Click on Login > API request to api.app.com/authenticate > request fails with 403 and gives the following error - Access to api.app.com from origin from dev.app.com has been blocked due to missing access-control-allow-origin header.
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
Even after implementing the header, I still get error.
23 replies
CDCloudflare Developers
Created by Harsh Parekh on 1/29/2025 in #general-help
Facing CORS error while enabling I AM UNDER ATTACK MODE
but if I enable under attack mode during an actual attack, I don't want the application to break. What can we do to fix it? The APIs should work as they are working when the under attack mode is set to or medium @valkyrie_pilot
23 replies