[annotator-dev] X-Annotator-User-Id is not allowed by Access-Control-Allow-Headers

Nick Stenning nick at whiteink.com
Tue Mar 27 13:22:57 UTC 2012

Andrea, Johnny, Randall,

The Wordpress plugin was Andrea's creation, and lives at


What needs doing is probably pretty simple. I've had a quick glance at
the code just now, and it seems that the plugin supports what I'll
call the Terrifying Authentication Method that we've now deprecated.

Really, all it should now need to do is inject the appropriate CSS/JS
into the page, as it doesn't support token generation. That means that
it'll allow AnnotateIt users to annotate your pages.

Later, if possible, we should look into adding a "consumer mode," in
which authenticated WP users can have tokens generated for them.


On Mon, Mar 26, 2012 at 01:45, Randall Leeds <tilgovi at hypothes.is> wrote:
> On Mar 25, 2012 3:05 PM, "johnny jiang" <johnny.nan.jiang at gmail.com> wrote:
>> Hi Andrea,
>> I got the message from Chrome Console, I was wondering if there are some
>> changes introduced in the backend storage recently?
> I don't know if these changes are live, but the repository has new code for
> authentication which is documented here:
> https://github.com/okfn/annotator/wiki/Authentication.
> This new system should provide suitably verifiable tokens that are easy to
> work with, generate, expire, etc.
> I don't know anything about the WP plugin but I'm happy to help if anyone
> runs into trouble updating it. It's something I'd like to look into using
> myself.
> -Randall
> _______________________________________________
> annotator-dev mailing list
> annotator-dev at lists.okfn.org
> http://lists.okfn.org/mailman/listinfo/annotator-dev

More information about the annotator-dev mailing list