Access Control Issue

Question

I have an API URL that works when pasted into a browser, but when scripted, does not.

Loading the page, the browser simply doesn't render anything. Chrome's "Inspect" returns:

"XMLHttpRequest cannot load ..."followed by the API URL (which we know is valid)

The error message goes on after the URL with

No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://web.labs.hpecorp.net:8088' is therefore not allowed access.

The URL http://webs.lab ... is the calling page.

Why would the call work in a browser but not when scripted?

paolot · Accepted Answer

Hi&nbsp;Warren_Brill
&nbsp;
the issue here is that your script is likely&nbsp;violating the CORS policy. This is a security measure implemented in most browsers. I find that this article may help you understand the problem and what can be done to allow the call. Typically you will need the web server you are calling to return an appropriate&nbsp;Access-Control-Allow-Origin header that allows the call.
&nbsp;
Hope it helps,

Forum Discussion

Access Control Issue

Related Content

Guide to reporting issues

How do I access a file shared through Box.com?

Access sso_id issues

Issues with batched queries

Home Page Styling issue

Recent Discussions

API v1 docs gone since Atlas migration to Aurora

Does anyone know how to change the display title of Custom Fields in Aurora?

Can someone walk me through authenticating and using Postman with Aurora?

Seeking Advice on Restricting Access to a posts to those who have the permalink.

TinyMceEditor is undefined