Ok so my assumptions were right. Interesting…
Comment on Quick video demonstrating that lemmy.world sends every activity out twice
scrubbles@poptalk.scrubbles.tech 2 months agoThat’s pretty standard with most libraries
hoshikarakitaridia@lemmy.world 2 months ago
Lemzlez@lemmy.world 2 months ago
I’ve never really seen this in (Java/Rust/PHP) backend personally, only in client-side JS (the CORS preflight).
It’s a security feature for browsers doing calls (checking the CORS headers before actually calling the endpoint), but for backends the only place it makes sense is if you’re implementing something like webhooks, to validate the (user submitted) endpoint.