topic CORS Error when making AJAX Post Request to Create Webhook in Integration and Testing

CORS Error when making AJAX Post Request to Create Webhook

dvieira — Thu, 07 Dec 2023 00:13:33 GMT

Getting error " The 'Access-Control-Allow-Origin' header has a value 'https://developer.authorize.net' that is not equal to the supplied origin." making POST request. Javascript request code below. Working in Sandbox.

var transaction_key = "[key]";

var api_login_id = "[login_id]";

$.ajax({

headers: {

"Authorization": "Basic " + btoa(api_login_id + ":" + transaction_key)

url: "https://apitest.authorize.net/rest/v1/webhooks",

type: "POST",

contentType: "application/json",

data: JSON.stringify({

"name": "My New Webhook",

"url": "[my URL]",

"eventTypes": [

"net.authorize.payment.authcapture.created",

"net.authorize.customer.created",

"net.authorize.customer.paymentProfile.created",

"net.authorize.customer.subscription.expiring"

"status": "active"

}),

dataType: "json",

success: function (response) {

console.log(response);

}

});

Re: CORS Error when making AJAX Post Request to Create Webhook

marshray — Mon, 11 Dec 2023 11:14:48 GMT

Authorize Your Domain: Make sure that "https://developer.authorize.net" is listed as an authorized domain in the CORS headers on the server status at :https://apitest.authorize.net. This involves configuring the server to include the 'Access-Control-Allow-Origin' header with the value 'https://developer.authorize.net' in its responses.
Wildcard (*) Approach: If possible, configure the server to respond with a wildcard '*' as the 'Access-Control-Allow-Origin' header, allowing any domain to access its resources. This is less secure and should be used cautiously, mainly in development environments.
Proxy Server: Set up a proxy server on your domain that forwards requests to "https://apitest.authorize.net." This way, the request appears to come from the same domain, avoiding CORS issues.