Cross Origin Resource Sharing (CORS)
If you access the MindKey Recruiting (either via Web Components or via the API) directly in the browser, you need to configure Cross Origin Resource Sharing (CORS). Otherwise, the browser will block the access to the API.
CORS (Cross-Origin Resource Sharing) is a security feature implemented by web browsers to protect against potentially harmful web page scripts that try to make unauthorized requests to a different domain. It allows or restricts web pages hosted on one domain to request resources from another domain.
Update your CORS settings in MindKey
In MindKey, you can configure your Cross-Origin Resource Sharing (CORS) settings to control which domains can access your MindKey API. This is essential for ensuring the security and accessibility of your API. Here's how you can update your CORS settings:
In MindKey, go to Recruitment -> Setup -> Publishing -> Recruitment Access Control. You'll find a list of domains that are permitted to access your MindKey API. To grant access to a new domain, click the option to add an origin.
An origin typically consists of the protocol (e.g., http:// or https://) followed by the domain and an optional port (e.g., example.com or example.com:8080).
Be cautious when adding domains to the list. Only add domains that are genuinely necessary for accessing your MindKey API. Adding unnecessary domains can pose security risks.