Learn How We Can Help You Keep Teleworkers Protected During the COVID-19 Crisis

Security

Reply
Highlighted

Proxy to REST Server

Employee
Employee
Posts: 65
3993     0

Because of cross-site scripting enforcement in the browser I had to setup a proxy on my the local Apache so my Javascript code could call a local URL. To do this I added the following entry to my httpd.conf

 

ProxyPass /wapi/ https://<gridmaster IP or name>/wapi/

 

Then I can make local references to /wapi in my code. Hope this helps those of you intereted in doing javascript stuff.

Highlighted

Re: Proxy to REST Server

Community Manager
Community Manager
Posts: 248
3994     0

also, by doing this you can send un-encrypted packets to the local HTTP server which makes debugging packet captures much easier.

Highlighted

Re: Proxy to REST Server

Adviser
Posts: 63
3994     0
Are there any plan to implement CORS (http://enable-cors.org/) instead of having to use the ProxyPass directive ?
Highlighted

Re: Proxy to REST Server

Employee
Employee
Posts: 65
3994     0

We don't have any plans for CORS support in our first GA (general availablity) release. However, we are looking into how me might support this functionality in a future update to the API.

Highlighted

Re: Proxy to REST Server

Adviser
Posts: 63
3994     0
Ok, thanks !
Highlighted

As of NIOS 6.8.2 we have

Community Manager
Community Manager
Posts: 248
3994     0

As of NIOS 6.8.2 we have partial implementation of CORS. 

We will set the 'Access-control-Allow-Origin' to accepts requests from any GRID member running either bloxtools, or HTTP file distribution and from 'localhost 127.0.0.1'

So you should be able to send requests from a localhost DEV server or from a grid member running file distribution (yes, you can server HTML/js pages from the file dist).

IF you have a 3rd party HTTP server, then we assume that you have access to put in your own proxy.

Highlighted

Great ! Glad to see an update

Adviser
Posts: 63
3994     0

Great ! Glad to see an update to this old question, thanks !

Highlighted

Re: As of NIOS 6.8.2 we have

Techie
Posts: 2
3994     0

Have there been any updates to the CORS policy settings that can be tweaked from a grid member API server? I would like to be able to allow direct API connections from within a few subnets in our enterprise environment. I have a front and React application that I have been working on. It would seem cleaner to deploy that without having to provide some type of proxy server in between.

 

Any suggestions welcome!

Showing results for 
Search instead for 
Do you mean 

Recommended for You