You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The API sets Access-Control-Allow-Origin: localhost. This is an invalid CORS header value (it must be a full origin like http://localhost:8080 or * )
I would suggest we change the CORS header to Access-Control-Allow-Origin: * for public access, or dynamically reflect the Origin header if credentials are required.
what do you think about this @wiresio or what would be the best practice.
The API sets Access-Control-Allow-Origin:
localhost. This is an invalid CORS header value (it must be a full origin likehttp://localhost:8080or*)I would suggest we change the CORS header to Access-Control-Allow-Origin:
*for public access, or dynamically reflect the Origin header if credentials are required.what do you think about this @wiresio or what would be the best practice.
Look at also at:
Access-Control-Allow-Originheader node-wot#941