New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to sign-up, turnstile not loaded in cors-friendly way #2521
Comments
Hello 👋 We currently close issues after 40 days of inactivity. It's been 30 days since the last update here. If we missed this issue, please reply here. Otherwise, we'll close this issue in 10 days. As a friendly reminder: The best way to see an issue fixed is to open a pull request. If you're not sure how to do that, please check out our contributing guide. Thanks for being a part of the Clerk community! 🙏 |
Bump |
So sorry @simonschmidt - something happened with our labeler here that got it messed up. We have this in our backlog and are planning to address! |
Preliminary Checks
Reproduction / Replay Link
n/a
Publishable key
n/a
Description
On a site with cross-origin-embedder-policy: require-corp it is not possible to sign-up using email as turnstile fails to load with:
Reproduce
Clerk.openSignIn()
See error:
Workaround
Manually add a script tag with
crossorigin="anonymous"
attribute, this works because the captcha loader checks ifwindow.turnstile
exists and if so does not try to load it again.Potential fix
I think it can be fixed by passing in
crossOrigin: 'anonymous'
in captcha.ts as that should do the same thing as the workaround.Environment
The text was updated successfully, but these errors were encountered: