Guardian JS CORS error

I’m using this JS package for guardian GitHub - auth0/auth0-guardian.js: Client library for Auth0 Guardian - getting a cors error when calling auth0GuardianJS.start (tenant.guardian.auth0.com/api/start-flow). Problem is that there is no setting in auth0 to set cors (allowed origin, etc) for *.guardian.auth0.com.

Any insight into where/how to setup allowed origins for guardian subdomain would be appreciated.

1 Like

CORS (Cross-Origin Resource Sharing) is an HTML5 feature that allows one site to access another site’s resources despite being under different domain names.

The W3C specification for CORS actually does a pretty good job of providing some simple examples of the response headers, such as the key header, Access-Control-Allow-Origin , and other headers that you must use to enable CORS on your web server.

If you are looking for specific information on how set up CORS on a variety of common web servers, check out the Enable CORS sharing website. http://enable-cors.org/

Based on the URL that you have given above, I don’t think you have a control on that server. Thus, it will simply would not work.

Thanks for sharing that with the rest of community!

Thanks for your reply, but I think you missed the point of the question. In auth0 management portal (https://manage.auth0.com) there is no access to the set allowed origins for guardian as you would for your applications, similar to screenshot.

1 Like