I am setting up a CORS configuration for an endpoint that will receive requests from a Weweb app. What origin(s) do I need to whitelist for this to work? Is it just weweb.io?
Thanks!
The origin is the domain of the front-end. When published, this is your custom/private domain. In the editor, this should be editor.weweb.io.
Good on you for implementing this! It’s a good, simple security measure.
2 Likes