Hey! OK, I tried some things and it seems Firefox 8.0.1 does not accept
Access-Control-Allow-Origin: * Access-Control-Allow-Methods: * but wants Access-Control-Allow-Origin: * Access-Control-Allow-Methods: DELETE explicitly in the response header from the server. Now it works, but I find this strange nonetheless... Regards Ferdi On 30.11.11 13:47, Tristan Koch wrote: > Hi Ferdinand, > > welcome to qooxdoo! > > What you're observing is a so-called preflight request that is made > for a certain subset (*) of cross-origin requests (DELETE belongs > to this subset). Preflight requests are transparently issued by the > browser. They cannot be observed from the XHR API. > > If the server states that DELETE is allowed, the browser should > make the originally intended request. If not, its because the > (cross origin) server denied the client to share its resources. > > I suspect you server's response is missing the > Access-Control-Allow-Origin header? > > If you want to learn more, the CORS page on MDN [1] is very > helpful, even for browsers other than Firefox. > > Regards Tristan > > [1] https://developer.mozilla.org/En/HTTP_access_control > > (*) Basically any request that cannot be faked with <img> (GET > without any custom headers) or <form> (POST with Content-Type > urlencoded). > > Am 30.11.2011 um 10:30 schrieb Ferdinand Niedermann: > >> Hi there! >> >> I'm new to qooxdoo and trying to implement a frontend for a >> JSON-API. In order to delete records on the server side, I'm >> sending a >> >> qx.io.request.Xhr(url, "DELETE") >> >> request. But all this does is issue an HTTP OPTIONS request. I >> understand this is for checking, whether the DELETE method is >> allowed. Therefore i reply with >> >> Access-Control-Allow-Methods: * >> >> on the server side. Shouldn't qooxdoo now send the actual DELETE >> request? What am I missing here? >> >> Regards, Ferdi >> >> ------------------------------------------------------------------------------ >> >> All the data continuously generated in your IT infrastructure >> contains a definitive record of customers, application >> performance, security threats, fraudulent activity, and more. >> Splunk takes this data and makes sense of it. IT sense. And >> common sense. http://p.sf.net/sfu/splunk-novd2d >> _______________________________________________ qooxdoo-devel >> mailing list [email protected] >> https://lists.sourceforge.net/lists/listinfo/qooxdoo-devel > > > ------------------------------------------------------------------------------ > > All the data continuously generated in your IT infrastructure > contains a definitive record of customers, application performance, > security threats, fraudulent activity, and more. Splunk takes this > data and makes sense of it. IT sense. And common sense. > http://p.sf.net/sfu/splunk-novd2d > _______________________________________________ qooxdoo-devel > mailing list [email protected] > https://lists.sourceforge.net/lists/listinfo/qooxdoo-devel > ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-novd2d _______________________________________________ qooxdoo-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/qooxdoo-devel
