Skip to content

Handle CORS errors in form submissions with fallback to full page redirect #2196

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
Copilot wants to merge 2 commits into
base: 1889-redirect-no-cors
Choose a base branch
from
Draft

Handle CORS errors in form submissions with fallback to full page redirect #2196

Copilot wants to merge 2 commits into from

Conversation

Copy link
Contributor

Copilot AI commented Dec 16, 2025
edited
Loading

When forms redirect to external URLs without CORS headers, XMLHttpRequest.send() throws instead of gracefully degrading. This breaks legitimate use cases like redirecting to external authentication providers or payment gateways.

Changes:

  • Wrap request.send() calls in try-catch blocks to intercept CORS exceptions
  • Fall back to window.location.href redirect when AJAX fails
  • Handle both file upload and standard form submission paths
  • Introduce requestUrl variable to track the correct redirect target for GET (with query params) vs POST requests

Implementation:

try {
    request.send(parameters.join('&'));
} catch (e) {
    // CORS error - fall back to full page redirect
    window.location.href = requestUrl;
}

The change is transparent to same-origin requests while enabling external redirects that previously failed with console errors.

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

Copilot AI mentioned this pull request Dec 16, 2025
Open
@amitaibu
Resolve merge conflicts with master - rebase changes to new file loca…
83c916a 
…tion

Co-authored-by: amitaibu <125707+amitaibu@users.noreply.github.com>
Copilot AI changed the title [WIP] Allow redirect to external sites if CORS isn't enabled Handle CORS errors in form submissions with fallback to full page redirect Dec 16, 2025
Copilot AI requested a review from amitaibu December 16, 2025 20:10
@unhammer unhammer mentioned this pull request Dec 17, 2025
Open
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@amitaibu amitaibu Awaiting requested review from amitaibu

Assignees

@amitaibu amitaibu

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@amitaibu