Configure security settings such as CORS origins

Allowed CORS Origin

Adding origins for CORS to your project environment (sandbox and live) protects your environment from unauthorized websites using your public environment key.

Any origins added to an environment will allow only those domains to make API requests via our SDK.

Adding an Origin

To add an origin, navigate to Settings > Security in the dashboard.

Click Create Origin and add your origin. (You can add multiple origins to any environment)

Be sure to format your origin according to the RFC 6545 format (exception of the wildcard *). An origin is a URL without the path.

Using wildcards

One or more * wildcard characters in your origin will represent 0 or more characters (a-z, 0-9, -, .) when matching origins.

Acceptable Example Values

Unacceptable Example Values

Did this page help you?