issue2551205: Add support for specifying valid origins for api: xmlrpc/rest We now have an allow list to filter the hosts allowed to do api requests. An element of this allow list must match the http ORIGIN header exactly or the rest/xmlrpc CORS request will result in an error. The tracker host is always allowed to do a request.

Babel
Jinja2
MarkupSafe
Pygments
alabaster
certifi
charset-normalizer
docutils
idna
imagesize
packaging
pyparsing
requests
six
snowballstemmer
sphinxcontrib-serializinghtml
sphinxcontrib-websupport
urllib3