Flaredown icon indicating copy to clipboard operation
Flaredown copied to clipboard
verified publisher icon rubyforgood

Checkins: "x" to remove selection on current date prevents information from saving and greys out buttons

Open samanthar8 opened this issue 4 years ago • 1 comments

How it works now

  • When trying to remove a Condition, Symptom, or Treatment, clicking the "x" next to a selection on the current date prevents information from saving (the selection removal and toggling a selection on/off) and greys out the "Add a ____", "Back", and "Next" buttons
  • This gives three console errors:

  1. Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://flaredown-api.herokuapp.com/api/trackings/955694. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing). [Learn More]

  2. Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://flaredown-api.herokuapp.com/api/trackings/955694. (Reason: CORS request did not succeed). [Learn More]

  3. The adapter operation was aborted

  • Trying to remove a Condition, Symptom, or Treatment on a prior day does not cause the same errors

How it should work Users should be able to remove a Condition, Symptom, or Treatment, with no issues.

samanthar8 avatar Oct 13 '21 19:10 samanthar8

I did some digging and found that this error was occurring due to SameSite=none cookies requiring 'secure'. In order to address this, we need to:

  • [x] Force https (should be taken care of by @benlangfeld's work on #498)
  • [ ] Add the 'Secure' attribute to the SameSite=None cookies

samanthar8 avatar Oct 14 '21 21:10 samanthar8