Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fehlende CORS Header #50

Open
tomatenschaf opened this issue Oct 27, 2021 · 0 comments
Open

Fehlende CORS Header #50

tomatenschaf opened this issue Oct 27, 2021 · 0 comments

Comments

@tomatenschaf
Copy link

Hallo,

wir wollen die API über den Browser per JavaScript nutzen, bekommen in modernen Browser aber Fehlermeldungen wegen falscher/fehlender CORS-Header.

Im Preflight/Options Request werden diese Allow-Headers gesendet:

Access-Control-Allow-Headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token

Es fehlen jedoch die in der Dokumentation benutzten Header: cache-control, x-TraceId

Im eigentlichen POST Request fehlen dann die Access-Control-Allow-* Header aus dem Options Request komplett, die Fehlermeldung im Browser lautet:

Access to XMLHttpRequest at 'https://baufismart.api.europace.de/v2/ergebnisliste/ermittlung' from origin 'http://local.computer' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Das Problem betrifft vermutlich auch die anderen APIs von europace.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant