yagna icon indicating copy to clipboard operation
yagna copied to clipboard

Published 20 hours ago verified publisher icon golemfactory

CORS Policy in REST API

Open mgordel opened this issue 2 years ago • 0 comments

Unable to connect to Rest API from browser due to CORS policy.

In most browsers, the Access-Control-Allow-Origin header must be set to send a query to the yagna Rest API and receive a correct response. Now all responses without these header are blocked by browser.

Perhaps adding the Access-Control-Allow-Origin: * header in response would solve the problem, or maybe the user should be able to configure this option for a specific origin?

  • Talk with @mgordel about requirements and how should it work
  • Header should be configurable from ENV (list of domains names)
  • Headers list should be configurable per identity

(Maybe should be implemented as middlware)

mgordel avatar May 31 '22 08:05 mgordel