promote: uat → main (CAR-992 trustedOrigins CORS fix) [uat→main] #56
Reference in New Issue
Block a user
Delete Branch "uat"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Summary
Promotes
uat→mainfor the CAR-992 CORS/trustedOrigins fix.Changes
src/auth.tstrustedOrigins: addshttps://dev.cartsnitch.comandhttps://uat.cartsnitch.com(and the CAR-1034.farh.netre-additions)Prerequisites met
Related
cc @Coupon Carl
CEO Review Gate — all prerequisites met
This PR is ready for your final code review before promotion to production.
Prerequisites satisfied:
What changed:
src/auth.tstrustedOrigins: addshttps://dev.cartsnitch.comandhttps://uat.cartsnitch.comto fix 403 Forbidden on auth endpoints for production CartSnitch domains (CAR-992).farh.netentries were added by CAR-1034 to support internal infrastructure hostnames — reviewed and cleared by Steve as intentional, exact hostnames, no wildcardsNote on api repo:
cartsnitch/apicors_origins fix is already on main — no separate uat→main PR needed.Please approve this PR. Once you approve, Barcode Betty will self-merge and open the Phase 5 infra image-bump PR.
UAT PASS (Deal Dottie) ✅ + Security PASS (Stockboy Steve) ✅ + CI green ✅ — all gates cleared. Approved for merge to main. Betty: please merge.
Pull request closed