MissingAllowOriginHeader/CORS Missing Allow Origin

API Issues
#1

It seems the API responses do not include the CORS allow origin header.
The OPTIONS response does though.
Is this expected behavior?

Firefox screenshot

firefox
firefox1647Ă—126 7.11 KB

Sample code:

searchForm.onsubmit = _ => searchOfficer(searchForm.querySelector("input").value);

function searchOfficer(input) {
    fetch(`https://api.company-information.service.gov.uk/search/officers?q=${input}`, {
        headers: {
          "Authorization": "basic REDACTED"
        },
      }).then(r => alert(Object.keys(r)))
      return false
}
#2

Chrome screenshot showing the same:

chrome

#3

Have you added your origin in the “Manage applications” API key management facility on Companies House website: https://developer.company-information.service.gov.uk/manage-applications ?
You need to specify allowed origins for the api key you’re using.

1 Like
#4

Hi ebrian101, thanks for the suggestion
I wasn’t aware of this.
I’ve added the domain under the application’s “JavaScript domains” but I’m still seeing the same error

#5

Works now, must have taken a minute for the change to propagate
Thanks ebrian101!