ui.modern.cors.allow_origin

Specify the value of the CORS Access-Control-Allow-Origin response header sent by the modern UI

Key: ui.modern.cors.allow_origin
Type: String
Can be set in: profile.cfg, collection.cfg

Table of Contents

Description
Default Value
Examples
⚠ Caveats

Description

This option sets the value of the CORS Access-Control-Allow-Origin response header sent by the modern UI

Default Value

By default all cross domain requests are permitted:

ui.modern.cors.allow_origin=*

Examples

Only permit cross domain requests from a specific origin:

ui.modern.cors.allow_origin=http://www.domain.com/

⚠ Caveats

Changing this setting might affect the admin UI as it needs to request the modern UI using CORS.