Access Control Allow Headers
I'm calling my API endpoints from my React web app, and Firefox is giving me this warning:
Cross-Origin Request Warning: The Same Origin Policy will disallow reading the remote resource at [Xano Endpoint URL] soon. (Reason: When the Access-Control-Allow-Headers is *, the Authorization header is not covered. To include the Authorization header, it must be explicitly listed in CORS header Access-Control-Allow-Headers).
Is making a change to address this on the roadmap? I'm not sure how "soon" this will stop working.
Answers
-
Hey @simeon,
Most likely this "soon" will be never.
But apart from that, you can possibly ask privately Xano support so they can give you a specific address (highly unlike they will give you the actual address, but maybe they can add a proxy? not sure how they have it configured and what custom solutions they can offer, but I am sure they will do their best to help you).
Categories
- All Categories
- 53 ? Announcements
- 47 ? Releases
- 37 ? Welcome
- 983 ? Help! I'm a Noob
- 125 ? No-Code Front-Ends
- 633 ? Working with APIs
- 439 ? Transforming data
- 126 ? Connect Xano to ...
- 50 ?? Find an Expert
- 348 ❓Other questions
- 35 ? Security
- 22 ✂️ Snippets
- 19 ? Showcase
- 7 ?️ Xano Chatter
- 62 ? Video Tutorials
- 171 ? Request a feature
- 229 ? Report a Bug
- 19 ? Templates & Extensions
- 7 ? Feedback