Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.

To whitelist a domain for CORS, navigate to the DEVELOPMENT/Cors section of the customer portal where you can add the domain for the application you need to use.

The following types of domains are accepted:

  • FQDN (see here for details) Only 2nd and above level domains are accepted (e.g. or The domain must not include any scheme, path, port, query or fragment

  • IP v4 (see here for details)

  • Patterns like * "*" will whitelist every subdomain like or

The domain will be allowed for both HTTP and HTTPS, default port and any other ports.

Changes to the configuration may take up to 30 minutes to take effect.

Last updated