Re: Cannot get splunk web to send CORS headers

zapping575 · ‎07-12-2024

I have been experimenting with splunk-ui and created an app to make calls from splunk web to the splunk REST API.

However, I keep getting errors like this:

The same origin policy prohibits access to external resource at https://localhost:8090/servicesNS/nobody/path_redacted_but_is_valid?output_mode=json. (Reason: CORS-Header 'Access-Control-Allow-Origin' is missing)

This is how the call looks like

const url = `https://localhost:8090/servicesNS/nobody/${eventType.acl.app}/saved/eventtypes/${eventType.title}?output_mode=json`

const response = await fetch(url, {
        credentials: "include",
        method: "POST",
        redirect: "follow",
        body: JSON.stringify({'search': eventType.content.search})
    });
    return response.json();

This is my server.conf

[sslConfig]
sslRootCAPath = /opt/splunk/etc/auth/mycerts/cert.pem

[httpServer]
crossOriginSharingPolicy = https://localhost:8090
crossOriginSharingHeaders = *

I can access https://localhost:8090/servicesNS/* "by it self" in my browser.

I am using Firefox 128 and splunk 9.0.5

I can set crossOriginSharingPolicy to "*" (without quotes), but that will cause the browser to reject any requests that require authentication, so this is no solution

zapping575 · ‎07-16-2024

To answer my own question

This was a browser issue.

Both the splunk REST API and Splunk Web must use https for the REST call to succeed. In my case, this means https://localhost:8000 for splunk web and https://localhost:8090 for the API

Cannot get splunk web to send CORS headers

app

rest API

Splunk Web Framework

CX Day is Coming!

Strengthen Your Future: A Look Back at Splunk 10 Innovations and .conf25 Highlights!

Now Offering the AI Assistant Usage Dashboard in Cloud Monitoring Console

Are you a member of the Splunk Community?