saleor: Bug: Blocked by CORS policy on local development

What are you trying to achieve?

I want to set API and Dashboard locally, so I can deal with data through Dashboard

Steps to reproduce the problem

  1. Run API with docker compose
  2. Change env file in Dashboard folder API_URI=http://localhost:8000/graphql/
  3. Run Dashboard
  4. See Network Error

What did you expect to happen?

Connect dashboard to API

Logs

Access to XMLHttpRequest at 'http://localhost:8000/graphql/' from origin 'http://localhost:9000' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
Screenshot 2023-04-06 at 15 59 41

Environment

Saleor version: API “3.13.0-a”, Dashboard “3.13.0-dev” OS and version: macOS, 13.3, 22E252

About this issue

  • Original URL
  • State: closed
  • Created a year ago
  • Comments: 15 (3 by maintainers)

Most upvoted comments

Default settings using django-cors-headers are not enough. After all, it raises different preflight errors the “auhtorization-bearer” header is missing, and the cors credential error. For a complete solution it required to add:

from corsheaders.defaults import default_headers

CORS_ALLOWED_ORIGINS = [
        "http://localhost:3000",
        "http://localhost:9000",
    ]
CORS_ALLOW_CREDENTIALS = True
CORS_ALLOW_HEADERS = list(default_headers) + [
        "authorization-bearer",
    ]
+3
madatbay on Apr 10, 2023

Folks, you definitely don’t need to install any third-party libraries. For local development, make sure you’re starting Saleor using uvicorn saleor.asgi:application --reload and not using python manage.py runserver as Saleor requires ASGI to function. If it still does not work, please provide more details on how to reproduce your problem.

+2
patrys on Jun 29, 2023

Saleor doesn’t need django-cors-headers; we have the cors_handler function implemented in the repo, but it’s an async one. Django’s default runserver won’t handle it for local development. You can run it using:

python -m saleor

or

uvicorn saleor.asgi:application --reload

I think it’s missing in the docs - we will fix it. See https://github.com/saleor/saleor/pull/11415.

+2
maarcingebala on Jun 29, 2023

@JPaulMora devcontainers are not supposed to start any services. It’s impossible to restart them, and if the default command crashes, the entire container disappears. The main command being sleep is the industry standard.

+1
patrys on Mar 25, 2024

@madatbay thanks for your answer, this issue was getting me crazy 💯

+1
fedexin40 on Apr 18, 2023
Read more comments on GitHub
← saleor: Add missing descriptions in types
saleor: Bug: Creating an upload an image in dashboard, thumbnail url is http://localhost:8000 →