CORS Security Access Issue XMLHttpRequest cannot load error

(Doc ID 2308620.1)

Last updated on SEPTEMBER 19, 2017

Applies to:

Content and Experience Cloud Service - Version 14.1.0.0.0 to 14.1.0.0.0
Information in this document applies to any platform.

Symptoms

On :17.3.5 Content & Experience Cloud / Documents Server

ACTUAL BEHAVIOR
---------------
CORS Security access issue latest CEC Release

The error message returned is as follows:

XMLHttpRequest cannot load https://<service_name>-<identity_domain>.documents.us2.oraclecloud.com/documents/api/1.1/folders/items?orderby=name:asc&limit=1000.  Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'https://<site.url1.com>' is therefore not allowed access.

EXPECTED BEHAVIOR
------------------------
URLs defined in CORS settings should be allowed access.


BUSINESS IMPACT
-----------------------
Critical functionality for customer.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms