Documentation
Documentation
Help Center
Live Demo
Github
Community
Forest Admin
Getting Started
Installation
Setup guide
Development workflow
Reference Guide
How it works
Models
Relationships
Views
Collections
Fields
Routes
Actions
Segments
Scopes
Performance
Charts
Integrations
Project settings
Teams, Users & Permissions
Collaboration
Glossary
Premium features
Extra help
Setup
Prevent permission errors at installation
Deploy your admin backend on Heroku
Deploy your admin backend to Ubuntu server
Deploy your admin backend to Google Cloud Platform
Install Forest Admin on a remote machine
Use Forest Admin with a read-only database
Configuring CORS headers
Upgrade
Databases
Settings
Code samples
Powered by GitBook

Configuring CORS headers

Depending on how you've setup your app, you may encounter a CORS error. It will look like this in your browser console:

In this case, you need to configure the right CORS headers to allow the domain app.forestadmin.com to trigger an API call on your Application URL, which is a different domain name (e.g. localhost:3000 on development).

Rails
Rails

We use the Rack CORS Gem for this purpose.

gemfile
# Gemfile
source 'https://rubygems.org'
# ...
gem 'forest_liana'
gem 'rack-cors'
congif/application.rb
module YourApp
  class Application < Rails::Application
    # ...
    # For Rails 5, use the class Rack::Cors. For Rails 4, you MUST use the string 'Rack::Cors'.
    null_regex = Regexp.new(/\Anull\z/)
    config.middleware.insert_before 0, Rack::Cors do
      allow do
        hostnames = [null_regex, 'localhost:4200', 'app.forestadmin.com', 'localhost:3001']
        hostnames += ENV['CORS_ORIGINS'].split(',') if ENV['CORS_ORIGINS']
        origins hostnames
        resource '*',
          headers: :any,
          methods: :any,
          expose: ['Content-Disposition'],
          credentials: true
      end
    end
  end
end
Previous
Use Forest Admin with a read-only database
Next - Extra help
Upgrade
Last updated 6 months ago