https://serverless-stack.com/ logo
Join Slack
Powered by
With `allowOrigins: ['*']` I got CORS error `Wildc...
# help
a
With 
allowOrigins: ['*']
I got CORS error 
WildcardOriginNotAllowed
j
you can't use wildcard with 
allowCredentials: true
a
I want to be able to transfer `Cookie`/`Authorization` headers. Can I do it without 
allowCredentials: true
?
j
allowCredentials: false
to me works fine for devel, even though 
Authorization
header is used, dunno how is it possible
Copy code
{
            allowOrigins: ['*'],
            allowMethods: [CorsHttpMethod.ANY],
            allowCredentials: false, // TODO investigate why it can be false when sending authorization header
            allowHeaders: ['Authorization', 'content-type'],
          }
snippet from my stack 😄
did not check if cookies are sent
a
j
I did read that, but as I said I am still able to send 
Authorization
header. Anyway whitelisting localhost explicitly worked fine as well.
Open in Slack
PreviousNext
Powered by