Solved: No 'Access-Control-Allow-Origin' header on preflig...

danfri86 · ‎03-30-2016

Hi. I'm making calls to Fitbit and have only tested in Chrome this far. I recieve:

Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource...

I was reading in this post that Fitbit is supporting CORS but it doesn't seem like it, am I wrong?

Thanks

Daniel

JeremiahFitbit · ‎03-30-2016

The Fitbit Web API supports CORS. Here's it working in a quick test I just did.

View best answer in original post

JeremiahFitbit · ‎03-30-2016

The Fitbit Web API supports CORS. Here's it working in a quick test I just did.

JeremiahFitbit · ‎03-30-2016

Did your preflight request properly set a `referer` header?

danfri86 · ‎03-31-2016

Yes, it had the correct referrer. I managed to solve by adding some headers to my .htaccess! Thanks for your time though 🙂

c3lx · ‎06-02-2016

Could you post what headers you added to .htaccess? Thanks!

danfri86 · ‎06-04-2016

Sure, what worked for me was adding this:

<IfModule mod_headers.c>
#Header add Access-Control-Allow-Origin "http://mydomain.com"
#Header set Access-Control-Allow-Origin "*"
#Header set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE"
#Header set Access-Control-Allow-Headers "Origin, X-Requested-With, Content-Type, Accept"
</IfModule>

alexgi · ‎06-12-2016

Just this work for me

<IfModule mod_headers.c>
Header add Access-Control-Allow-Origin "*"
</IfModule>

And checkout this guide for Cross Origin Access Header, very good explaination on how it works

Join us on the Community Forums!

Community Guidelines

Learn the Basics

Join the Community!

Not finding your answer on the Community Forums?

Go to the Help Site

Contact Support

No 'Access-Control-Allow-Origin' header on preflight

danfri86

JeremiahFitbit

JeremiahFitbit

JeremiahFitbit

danfri86

c3lx

danfri86

alexgi