Cross-Origin Request (CORS) Blocked for Nuxeo Roadmap

I'm having trouble connecting my jira host name with nuxeo roadmap. FireBug on Firefox keeps notifying me that “Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://jira.my.host.name/rest/api/latest/project/MyProject/versions. This can be fixed by moving the resource to the same domain or enabling CORS.”

I have modified the httpd.conf and added this code block and it still does not work.

#Solution using mod_headers and mod_setenvif
<IfModule mod_headers.c>
       SetEnvIf Origin (.*) AccessControlAllowOrigin=$1
       Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin
       Header set Access-Control-Allow-Credentials true
</IfModule> 

I have also modified the JIRA_BASE_URL to 'https://jira.my.host.name' and it still won't connect. I need assistance with how to enabling CORS for this. Thank you!

0 votes

1 answers

1428 views

ANSWER



Hi,

We have the following apache configuration:

SetEnvIf Origin "http(s)?://(www\.|roadmap\.)?(nuxeo.com)$" AccessControlAllowOrigin=$0
Header add Access-Control-Allow-Origin %{AccessControlAllowOrigin}e env=AccessControlAllowOrigin

Nice to see you are interested by this project! I will ask to open issues on the github repo directly as this answers.nuxeo.com is dedicated to Nuxeo Platform. Until then we can exchange here.

0 votes



Thank you for the reply. I'm actually trying to substitute my company's jira's domain name instead. I have also enabled whitelisting on Jira's side of things but still the CORS must be enabled message comes up. I was wondering if you have any suggestions to do this.
08/04/2015

I have updated my answer with more information on our configuration in case it helps
08/06/2015