Currently, prevented from making CORS requests for the sheriff JSON rotations. build.chromium.org doesn't need CORS headers for those files, but if needed, please whitelist cros-goldeneye.corp.google.com and cros-goldeneye-staging.corp.google.com.
Sorry for the delay here . Manged to miss this bug. Created CL: https://chromium-review.googlesource.com/c/infra/infra/+/1321549 To have the CORS headers added to legacy/* requests. This is currently pushed to rotang-staging.googleplex.com if you want to try it ouit .. It adds the "access-control-allow-origin": "*" header.
The following revision refers to this bug: https://chromium.googlesource.com/infra/infra/+/b0a0a686e93ae73079c12bcce6cab8b09b7645f6 commit b0a0a686e93ae73079c12bcce6cab8b09b7645f6 Author: Ola Karlsson <olakar@chromium.org> Date: Wed Nov 07 01:58:19 2018 [rotang] Add in "acess-control-allow-origin": * to the legacy/* files. Bug: 900254 Change-Id: I44ab7f35c810fe1072486b36ff470edc63b3c6cd Reviewed-on: https://chromium-review.googlesource.com/c/1321549 Reviewed-by: Tiffany Zhang <zhangtiff@chromium.org> Commit-Queue: Ola Karlsson <olakar@chromium.org> Cr-Commit-Position: refs/heads/master@{#18827} [modify] https://crrev.com/b0a0a686e93ae73079c12bcce6cab8b09b7645f6/go/src/infra/appengine/rotang/cmd/app/app_staging.yaml [modify] https://crrev.com/b0a0a686e93ae73079c12bcce6cab8b09b7645f6/go/src/infra/appengine/rotang/cmd/handlers/handle_legacy.go [modify] https://crrev.com/b0a0a686e93ae73079c12bcce6cab8b09b7645f6/go/src/infra/appengine/rotang/cmd/app/app_local.yaml [modify] https://crrev.com/b0a0a686e93ae73079c12bcce6cab8b09b7645f6/go/src/infra/appengine/rotang/cmd/app/app_prod.yaml
Pushed to rota-ng.appspot.com too now.
Thanks! I've verified locally that the new URLs work, and will work on the CL to switch over.
Comment 1 by olakar@chromium.org
, Nov 6