CORS prevent js window.onerror from subdomain reporting informations

javascript http-headers nginx cors

From the same documentation:

If the server sends a response with an Access-Control-Allow-Origin value that is an explicit origin (rather than the "*" wildcard), then the response should also include a Vary response header with the value Origin — to indicate to browsers that server responses can differ based on the value of the Origin request header.

Access-Control-Allow-Origin: https://developer.mozilla.org
Vary: Origin

Related

Remote mysql server in docker container - access using macvlan and wireguard?
Tomcat directly serve static (css, js) files shared by multiple applications
Error: "'net' is not recognized as an internal or external command, operable program or batch file"
How to set multiple relayhost in postfix?
Nextcloud fpm container with nginx on the host
Is there a way to define an Apache 2 virtual host with a partial ServerName
Apache httpd: Alias is inherited by virtual host?
sshfs passwordless
IAM for Google Cloud DNS: Restrict permissions to one managedZone?
Can't compile GDAL 3.2 on CentOS/RedHat 8
Tomcat 9 on port 443 working with only root which can be hamful [duplicate]
SLES 11 PV VM on KVM