Kibana, reverseproxy nginx and CORS enabled

danito · July 14, 2016, 1:07pm

Hi guys, all good?

I'm enabling CORS for my web frontend but seems that I'm missing something on Kibana
as I observe the following error:

Courier Fetch Error: unhandled courier request error: Authorization Exception in Chrome/Safari on Kibana 4.5.0

# Cors CONFIG
http.cors.allow-origin: /https?:\/\/localhost(:[0-9]+)?/
http.cors.allow-methods : OPTIONS, HEAD, GET, POST, PUT, DELETE
http.cors.allow-headers : X-Requested-With,X-Auth-Token,Content-Type, Content-Length
http.jsonp.enable: true

Any clues?
Thanks!

jbudz · July 14, 2016, 3:52pm

Kibana passes a header called kbn-version for xsrf protection. Can you try adding that?

Details at https://github.com/elastic/kibana/pull/5587