InControl 2 API - CORS Issue

seanainsley · December 10, 2018, 4:44am

Hello,

I created a Vue.js web application to do some testing of the InControl 2 API for an upcoming project. When I make calls to the API it doesn’t return the access-control-allow-origin: header. I am able to make calls to https://jsonplaceholder.typicode.com from the same application. That API returns the access-control-allow-origin header with my domain as the value. I am aware that I can “middleman” the request and avoid this but for testing I would like to be able to call straight to the API from the web application. Does anyone know if the InControl 2 API supports CORS or has plans to?

Thanks,

Sean Ainsley

Bonnie_Lam · December 10, 2018, 6:16pm

Hi,

InControl 2 API does not supports CORS and only support requests made from server side.

yuckon49 · April 23, 2021, 6:44am

Hello Bonnie_Lam,

Since 2018, does the strategy changes and we’re able now to make api call from JS App?

Best Regards,

Samuel, Careprod Dev Team

Michael · April 26, 2021, 3:20am

Let us come back to you later this week.

Michael · April 28, 2021, 8:23pm

Samuel, yes, you can now make API calls from JS apps.

We have introduced a Website Restrictions setting to the Client Applications settings screen. So you can restrict your API key to be applicable to your website only.