search

request-yo-racks / api

A REST API for the Request-Yo-Racks projects.
https://api.requestyoracks.org
MIT License
0 stars 4 forks source link

CORS settings are inccorect in production #39

Closed rgreinho closed 6 years ago

rgreinho commented 6 years ago

Issue Type

Expected Behavior

We want www.requestyoracks.org to be able to connect to api.requestyoracks.org.

Current Behavior

The requests are failing due to invalid CORS settings:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://api.requestyoracks.org/places/30.274722,-97.740556. (Reason: CORS header 'Access-Control-Allow-Origin' missing).

Possible Solution

Set the proper value in production settings for CORS_ORIGIN_WHITELIST.

Steps to Reproduce (for bugs)

  1. Go to https://www.requestyoracks.org/
  2. Open the Web Console and look at the warning messages