Start of change

Establishing security for Cross-Origin Resource Sharing (CORS)

Cross-Origin Resource Sharing (CORS) is a security feature that is implemented by web browsers to restrict cross-origin HTTP requests initiated by the client-side. By default, web browsers enforce a same-origin policy, which means a web application can only make a request to the same origin it was loaded from. However, CORS relaxes this restriction by allowing servers to specify which origins are permitted to access its resource.

To enable CORS for Debug Profile Service, configure the server configuration corAllowedOrigins in the eqaprof.env file. Identify the origins from which you want to allow requests, and explicitly add them as an entry. For example, corAllowedOrigins=https://localhost:8143.

End of change