Urgent please: Manticore http calls from other domain doesn't works

Nasca · August 10, 2022, 3:24pm

I call Manticore search by JS from other domain and fails because the manticore response doesn’t have the ‘Access-Control-Allow-Origin’ header.

This is the browser error:

Access to XMLHttpRequest at ‘https://manticore.domain:9308/search’ from origin ‘https://otherdomain.com’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.

How can I configure manticore to send the header?

tomat · August 10, 2022, 3:48pm

currently Manticoresearch does not support CORS mechanism by itself and you need to use proxy for that

We have ticket at GitLab tracker for this issue in the backlog. You also might create issue at GitHub to be informed on this issue progress.

Nasca · August 11, 2022, 7:48am

Thanks, so far I have configured a proxy that adds the necessary CORS headers and forces a 200 response when the CORS preflight makes a request to the OPTIONS method.