CORS Error Response
If CORS processing fails, the web reverse proxy returns an error response with the CORS error code.
Create or modify the corresponding template for error code 38983672 to customize the response returned. By default, IBM Security Verify Access installs a HTML type error template which returns a 400 status code. For information about customizing errors, see Content Aware Server Responses. The following scenarios are scenarios where the web reverse proxy can return the CORS error response:
- A cross-origin request was received from an origin which is not permitted by policy.
- A pre-flight request was made specifying a method (Access-Control-Request-Method) which is not permitted by the policy.
- A pre-flight request was made specifying one or more headers (Access-Control-Request-Headers) which are not permitted by the policy.
Parent topic: Cross-Origin Resource Sharing (CORS) Support