Can't get past CORS error
I'm trying to upload a video with javascript calls to the REST API and I can't get past the cross-origin error, I'm guessing because the access token doesn't get transmitted with the OPTIONS preflight check. What am I doing wrong?
I've tried setting up three different API clients, one server-side, one Javascript, and one hybrid. I can get OAuth tokens without a problem, and the server-side client can call the REST API, but the Javascript and hybrid clients fail with the cross-origin error every time. Everything seems to be set up properly according to the documentation, and my Jquery AJAX call is pretty basic.
Here's the hybrid client:
And I'm attaching the Jquery code, along with the request and response headers for the OPTIONS call that fails.
Is there something simple that I'm missing? Any help is greatly appreciated.
Answers
Hi Will,
There is a setting that one of your Panopto administrators should be able to access to add additional allowed cross-origin request domains. The setting is under System->Settings->Security - API - Allowed API Origins. This should be a list of domains that are allowed to make cross-origin calls from a browser to the Panopto API, with each domain separated by a space.
Can you have one of your Panopto admins add your testing domain to this setting, and see if that fixes the CORS error?
If this does not resolve the issue, or if you have any other questions, please let me know.
Thanks,
Kevin