I have a Girder server running on www.my-awesome-server.com .
I have a front page running locally on my laptop (localhost using an apache serveur) and I make it access some custom girder API on my-awesome-server.com.
Problem is, Chrome complains about CORS policy:
Access to XMLHttpRequest at ‘http://my-awesome-server/api/v1/viewer/configuration?token=…’ from origin ‘http://localhost:8080’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: Redirect is not allowed for a preflight request.
On the Girder server, I configured the Advanced setting “CORS Allowed Origins” with * and I restarted the server. When I check the network request headers, I don’t see
Is there anything else I must do ?
It works fine if I start Google Chrome without web security checks.