Question
How to fix: has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
- Posted on April 12, 2023
- DigitalOcean App PlatformDjangoHTMLObject StorageDigitalOcean Spaces
Asked by Thomas Doll-Datema
Hi,
I am hosting a few fonts for my Django application on spaces. They were working ok for a little bit but now I get this error:
has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
How do I fix this? I have set the CORS policy on Spaces for this bucket as follows:
Origin: https://*.ondigitalocean.app
Allowed Method: GET HEAD
I do not know what to do with allowed headers. Any help would be much appreciated.
Show comments
Submit an answer
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
OMG I HAVE THE SAME ISSUE NOW, its driving me crazy. I have tried everything
Hi there,
It seems like you have the correct CORS policy for the origin and allowed methods, but you might be missing the required headers.
What I could suggest is to try and add the appropriate
Access-Control-Allow-Headersfor your DigitalOcean Spaces bucket"https://*.ondigitalocean.appGET, HEADContent-Type, Origin, AcceptLet me know how it goes!
For more information about this you can check out the documentation here:
https://docs.digitalocean.com/products/spaces/how-to/configure-cors/
Best,
Bobby
I do not currently have a domain attatched to the app as it’s still in development. As soon as its finished I’ll set it to one. for now I’m using
randomlink.ondigitalocean.app which is why I set it to*.ondigitalocean.app.