Which documentation did you try, Luca? Our docs are at: https://causeway.apache.org/vro/latest/cors/about.html , where we've tried to create an extension that simplifies the configuration as much as possible. But it's always possible that there's an error in it.
Still, it's also possible there's an error on your side ... the message; the origin "chrome://startpage" looks very weird to me. Do read the article referenced from the above page, it's useful background on CORS and why it's needed. HTH Dan On Thu, 16 Nov 2023 at 16:01, Luca Rivera <[email protected]> wrote: > Hello, > > I'm trying to use the Causeway-provided APIRest to make requests from a > frontend on a different domain. When I make the request, this is the error > I receive: > > "Access to fetch at ' > > http://localhost:8080/restful/services/simple.LoginJugador/actions/LoginJugador/invoke > ' > from origin 'chrome://startpage' has been blocked by CORS policy: Response > to preflight request doesn't pass access control check: No > 'Access-Control-Allow-Origin' header is present on the requested resource. > If an opaque response serves your needs, set the request's mode to > 'no-cors' to fetch the resource with CORS disabled." > > I've tried following the documentation by adding the necessary dependencies > and configuring the application.yml file, but I haven't been able to solve > this CORS issue. I would appreciate any guidance or advice on this matter. > > Thank you for your help. > > Best regards, >
