Blocked by CORS

Question

Blocked by CORS

sunnyguan opened this issue 4 years ago · 4 comments

The AWS endpoint recently started having issues with CORS and can't return the parsed results; not sure if this is due to Lever's API or the AWS Lambda.

Access to fetch at 'https://g5wkkduchj.execute-api.us-east-2.amazonaws.com/Prod' from origin 'https://itsjafer.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

Tested on Edge/Chrome/Safari with and without incognito.

doitmaan commented 4 years ago

same

Answer 1 · 2021-01-30T07:43:28.000Z

The AWS endpoint recently started having issues with CORS and can't return the parsed results; not sure if this is due to Lever's API or the AWS Lambda.

Access to fetch at 'https://g5wkkduchj.execute-api.us-east-2.amazonaws.com/Prod' from origin 'https://itsjafer.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

Tested on Edge/Chrome/Safari with and without incognito.

Same issue on Brave with and without incognito.

Answer 2 · 2021-02-06T19:12:00.000Z

Unfortunately this is an opaque error. The actual cause of the error is that the Lever API has restricted public access. I'm leaving this issue open until the Lever API is worked around

Answer 3 · 2021-08-10T18:32:02.000Z

Update, it turns out a simple header spoof was enough to get this working again!