CORS Configuration

Overview

Cross-Origin Resource Sharing (CORS) is essential for secure client-server communication. Learn how to properly configure CORS for your SSO integration.

Allowed Origins

You must register your domain with our service to enable cross-origin requests. Contact support to add your domain to the allowed origins list.

Headers Configuration

// Required Headers
Origin: your-domain.com
Content-Type: application/json

// CORS Headers in Response
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: your-domain.com
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization