This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

CORS on APIStudio but not on APIAry

Posted on 11-01-2016 05:49 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hello good people!

I'm using APIStudio and I'm trying to reach my server but it always returns a CORS problem.

The weird part is that the same YAML on APIAry works! Only on APISudio I get a missing Access-Control-Allow-Origin.

I have a policy for CORS:

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<AssignMessage async="false" continueOnError="false" enabled="true" name="add-cors">
    <DisplayName>Add CORS</DisplayName>
    <FaultRules/>
    <Properties/>
    <Add>
        <Headers>
            <Header name="Access-Control-Allow-Origin">*</Header>
            <Header name="Access-Control-Allow-Headers">*</Header>
            <Header name="Access-Control-Max-Age">3628800</Header>
            <Header name="Access-Control-Allow-Methods">GET, PUT, POST, DELETE</Header>
        </Headers>
    </Add>
    <IgnoreUnresolvedVariables>true</IgnoreUnresolvedVariables>
    <AssignTo createNew="false" transport="https" type="response"/>
</AssignMessage>

This is what I have in my console:

vendor.js:3 OPTIONS https://ml_corp-dev.apigee.net/v1/transports/ordersdraft send @ vendor.js:3ajax @ vendor.js:3y @ scripts.js:2fn @ VM13909:4e @ vendor.js:8$eval @ vendor.js:6$apply @ vendor.js:6(anonymous function) @ vendor.js:8dispatch @ vendor.js:2q.handle @ vendor.js:2
/a671b05a-09c8-43a5-95ab-678f655e7967/#/:1 XMLHttpRequest cannot load https://ml_corp-dev.apigee.net/v1/transports/ordersdraft. Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://playground.apistudio.io' is therefore not allowed access. The response had HTTP status code 401.
0 2 897
Topic Labels
0 Likes
2 REPLIES 2

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

I am facing the same issue from API Studio. I have attached the same Cors policy in the target endpoint response as suggested and I still see this error.

I am keeping a keen eye on this thread incase anyone from apigee team responds.

Regards,

S

0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

Hi @sim.maun! The only way I found to solve this was installing this Chrome extension

With this extension you will be able to disable CORS.

0 Likes
Top Solution Authors
View all