What is the correct WebAuth CORS setup

Honestly I am at a lost. I don’t know what else I can do to get the cors working.
I am using auth0.WebAuth on my login page. v9.11
I am serving the login page from express which has CORS enabled.
I have added https://*.now.sh, https://*.now.sh/login to all the Allowed fields in the settings.

but i still get a CORS error
https://blahblah.now.sh has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource

Hi @stagfoo,

I think this may be a problem with the wildcards, see here:

Can you try to use a specific url?

Thanks,
Dan

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.