Allow setting crossOrigin="use-credentials" for static files served from another domain / CDN (buildAssetsDir/cdnUrl) · nuxt/nuxt#30003

(1 commento) (2 reazioni) (0 assegnatari)TypeScript (60.221 star) (5607 fork)batch import

good first issuenitro🍰 p2-nice-to-have

Descrizione

Describe the feature

Currently, there is no way to set different crossorigin value than "" (anonymous) for static files. This becomes a problem when JS static files are served from CDN and we need to pass cookies in order to work properly in certain conditions - for example when Cloudflare Under Attack Mode is being on.

As a workaround, we created Nitro plugin which uses render:html hook. In that hook we have to parse html head and manually replace crossOrigin value.

I believe there should be an option (nuxt.config?) alongside buildAssetsDir and cdnUrl that could faciliate implementation, especially in large-scale projects.

Additional information

Would you be willing to help implement this feature?
Could this feature be implemented as a module?

Final checks

Read the contribution guide.
Check existing discussions and issues.

Guida contributor

Tech stack: typescriptvuenodejs
Dominio: frontendbackend
Tipo issue: feature
Difficoltà: 3
Tempo stimato: 1-2 days
Stato attività: active
Chiarezza: clear
Prerequisiti: NuxtGit
Adatta ai principianti: 70
Direzione di ricerca: Indaga come Nuxt genera l'attributo crossOrigin per i tag delle risorse statiche (link e script) e proponi un'opzione di configurazione per impostarlo su 'use credentials'. Guarda l'hook render:html o il meccanismo del plugin Nitro come riferimento per l'implementazione.