[services] Allow browsers to access prod identity from comm.software

Summary: This diff updates the CORS config for the identity service in production to allow incoming connections from browsers rendering comm.software and www.comm.software. Context for why we need this is in [ENG-9862](https://linear.app/comm/issue/ENG-9862/investigate-performance-issues-when-threadstore-changes). Test Plan: Terraform precommit hooks passed. Beyond that, not sure how to test this besides deploying to prod... Reviewers: varun, will, bartek Reviewed By: varun Subscribers: tomek Differential Revision: https://phab.comm.dev/D13881
CommE2E · Nov 5, 2024 · ebc9cb1 · ebc9cb1
1 parent 95b6459
commit ebc9cb1
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/services/terraform/remote/service_identity.tf b/services/terraform/remote/service_identity.tf
@@ -33,7 +33,11 @@ locals {
     http://localhost:3008,
     http://localhost:3009
   EOT
-  production_allow_origin_list    = "https://web.comm.app"
+  production_allow_origin_list    = <<EOT
+    https://web.comm.app,
+    https://comm.software:443,
+    https://www.comm.software:443
+  EOT
 }
 
 data "aws_secretsmanager_secret" "identity_server_setup" {