joshwlewis/application.rb

Last active August 29, 2015 13:56

Star 0 You must be signed in to star a gist
Fork 0 You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/joshwlewis/9336402.js"></script>
Save joshwlewis/9336402 to your computer and use it in GitHub Desktop.

Download ZIP

Rack::Cors doesn't insert headers when Rails app errors out. Fix it by inserting Rack::Cors at the top of your middleware stack.

Raw

application.rb

	config.middleware.insert 0, Rack::Cors do
	allow do
	origins(/^https:\/\/app.client.com$/)
	resource '*',
	headers: :any,
	methods: [:get, :put, :post, :delete]
	end
	end

Author

joshwlewis commented Mar 3, 2014

May solve your issues that look like this:

XMLHttpRequest cannot load https://api.server.com/. Origin https://app.client.com/ is not allowed by Access-Control-Allow-Origin.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment