[SOLVED] Can't access contents API due to CORS issue

Bugs Solved Bugs
1

I have…

  • [ ] Checked the logs and have uploaded a log file and provided a link because I found something suspicious there. Please do not post the log file in the topic because very often something important is missing.

I’m submitting a…

  • [ ] Regression (a behavior that stopped working in a new release)
  • [x] Bug report
  • [ ] Performance issue
  • [ ] Documentation issue or request

Current behavior

We can’t access our app due to a CORS issue, here is an image describing our issue:

image
image896×558 72.5 KB

Request URL:

OPTIONS https://contents.squidex.io/mine-app/text-manager/8ead23e5-8aea-4fd4-892d-f0b860c6ab64

Response:

Fastly error: unknown domain: cloud.squidex.io. Please check that this domain has been added to a service.

Details: cache-fra19171-FRA

Expected behavior

We should be able to access the API

Minimal reproduction of the problem

Environment

  • [ ] Self hosted with docker
  • [ ] Self hosted with IIS
  • [ ] Self hosted with other version
  • [x] Cloud version

Version: [VERSION]

Browser:

  • [x] Chrome (desktop)
  • [ ] Chrome (Android)
  • [ ] Chrome (iOS)
  • [ ] Firefox
  • [ ] Safari (desktop)
  • [ ] Safari (iOS)
  • [ ] IE
  • [ ] Edge

Others:

this is the URL for reproduce:

2

Hi, I have added CORS to CDN, but cached responses will not be affected by that immediately.

I would like to try your link, but it does not work.

3

It’s ok now it looks like it’s working, but it works only for our prod domain
we have also Staging & local environments that call the same API but get rejected with the same error

4

It could be the cache. There is no domain restriction or so.

1 Like
5

I’ve tried from another browser and it still throws an error:

image
image1415×507 79.5 KB

6

Have you checked the headers? You could add query string or so to purge the cache.

7

I can see an error that says: XHR OPTIONS https://contents.squidex.io/mine-app/text-manager/8ead23e5-8aea-4fd4-892d-f0b860c6ab64
CORS Missing Allow Origin

image
image1426×543 90.4 KB

8

I have added the config for the preflight request.

9

thanks, now it says another thing:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://contents.squidex.io/mine-app/text-manager/8ead23e5-8aea-4fd4-892d-f0b860c6ab64. (Reason: header ‘x-flatten’ is not allowed according to header ‘Access-Control-Allow-Headers’ from CORS preflight response).

10

Can you check it again?

11

awsome!!! it’s working now! thank u soo much :slight_smile:

1 Like
12

This topic was automatically closed after 2 days. New replies are no longer allowed.