CORS policy: No 'Access-Control-Allow-Origin' header is present

andylemaire · April 5, 2023, 11:06am

Hi,

The problem/error I’m currently unable to fix is the following:

Access to XMLHttpRequest at 'https://www.THEIRDOMAIN.com/Authentication' from origin 'https://www.MYDOMAIN.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

In my netlify.toml file I’ve configured the following, and yes, I can see it in the response:

[[headers]]
for = "/*"
[headers.values]
Access-Control-Allow-Origin = "*"

Anyone knows a solution, even since I can still see the header in the response?

edit: In case it would be asked by an engineer, site ID: 899fab00-217e-425c-901e-e731f90ae452

Gr,

Andy

jasiqli · April 5, 2023, 11:21am

Nothing to do with the Access-Control-Allow-Origin header on your domain. It is there domain that does not have the header allowing your domain to access it.

andylemaire · April 5, 2023, 11:23am

@jasiqli thanks, that could make sense. I’ll have to ask the client to check their configuration then.

Topic		Replies	Views
Cors problem - need a hand Support netlify-newbie	1	150	November 11, 2023
No 'Access-Control-Allow-Origin' header is present on the requested resource Support redirects , cors	1	2371	October 23, 2019
Netlify.app' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource Support netlify-newbie	7	9061	June 14, 2020
Access-Control-Allow-Origin Policy Support authentication , cors	74	62032	March 5, 2024
Heroku + Netlify gives - CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource Support netlify-newbie , cors	4	12384	May 31, 2023

CORS policy: No 'Access-Control-Allow-Origin' header is present

Related topics