Grpcweb cors not working

jimbrady · June 10, 2020, 9:08am

I have this in my virtual service but i still get cors error

Access to XMLHttpRequest at 'http://chains.example.com:32708/chain.ChainService/GetPrice' from origin 'http://localhost:39023' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.

corsPolicy:
  allowOrigin:
    - "*"
  allowMethods:
    - POST
    - GET
    - OPTIONS
    - PUT
    - DELETE
  allowHeaders:
    - grpc-timeout
    - content-type
    - keep-alive
    - user-agent
    - cache-control
    - content-type
    - content-transfer-encoding
    - custom-header-1
    - x-accept-content-transfer-encoding
    - x-accept-response-streaming
    - x-user-agent
    - x-grpc-web
  maxAge: 1728s
  exposeHeaders:
    - custom-header-1
    - grpc-status
    - grpc-message
  allowCredentials: true

jt97 · June 14, 2020, 9:00am

If you use istio 1.6 you might need to change allowOrigin to allowOrigins as mentioned here.

Topic		Replies	Views
Setting access-control-allow-origin: "*"	1	7780	July 1, 2020
gRPC JWT Authentication silently failing in Istio [workaround] Security	15	5775	June 28, 2019
Istio 1.7 CORS Policy not fully working Security security	1	3578	October 2, 2020
Looking for an example of External Authorization with gRPC applications Security	2	779	June 8, 2021
CORS missing header	0	501	October 27, 2021

Grpcweb cors not working

Related Topics