Dear Liang, sorry for the late replay. I moved the host & auth projects to another server and that fixed the CORS policy error.
Now when i start the front-end project it only shows blank page with no errors in the console window.
Hi,
Ok, I think this might be browser-related, if you use Microsoft Edge will it work as expected?
Related link https://developer.chrome.com/blog/cors-rfc1918-feedback
And could you change the log level to debug and share the logs again? thanks for your time.
logs sent to your email
Hi,
Ok, I think this may be a problem with IIS.
Is this working for you?
- https://manage.accuwebhosting.com/knowledgebase/3414/How-to-setup-Access-Control-Allow-Origin-for-IIS-8-in-web-config.html
Still the same CORS Error Access to fetch at 'https://xyz:5000/connect/token' from origin 'https://xyz:3000' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: It does not have HTTP ok status
Hi,
How about comment the CORS code
comment AddCors // context.Services.AddCors(options => // { // options.AddDefaultPolicy(builder => // { // builder // .WithOrigins( // configuration["App:CorsOrigins"]? // .Split(",", StringSplitOptions.RemoveEmptyEntries) // .Select(o => o.RemovePostFix("/")) // .ToArray() ?? Array.Empty<string>() // ) // .WithAbpExposedHeaders() // .SetIsOriginAllowedToAllowWildcardSubdomains() // .AllowAnyHeader() // .AllowAnyMethod() // .AllowCredentials(); // }); // });
comment UseCors // app.UseCors();
same CORS error after trying this
after reading this https://stackoverflow.com/questions/53675850/how-to-fix-the-cors-protocol-does-not-allow-specifying-a-wildcard-any-origin
i did this
context.Services.AddCors(options => { options.AddDefaultPolicy(builder => { builder .AllowAnyOrigin() // allow any origin. .WithAbpExposedHeaders() .SetIsOriginAllowedToAllowWildcardSubdomains() .AllowAnyHeader() .AllowAnyMethod() //.AllowCredentials(); }); });
the auth & host are running but the same cors policy error
Application startup exception The CORS protocol does not allow specifying a wildcard (any) origin and credentials at the same time. Configure the CORS policy by listing individual origins if credentials need to be supported.
Hi,
My email is shiwei.liang@volosoft.com
email sent
how can i send the logs file?
Hi,
Ok.
am waiting..