How can I resolve App CORS policy blocking issues?

Shopify Partner
5 0 0

Hi there,


I was wondering if anyone can help me with this issue.


Access to fetch at [NGOROK WEBSITE URL]' from origin '[SHOPIFY_STORE_WEBSITE_URL]' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.


The server is listening on 50223 and I start ngorok to the server it listens to each time to get the ngorok url above. Any ideas why I am getting this error above? 


My index.js file follows the tokengating example:

Reply 1 (1)

Shopify Partner
1 0 0

Try to put your URL App on Allowed Origins in your CORS configuration.

Is not enough only put '*', to Shopify it seems to be necessary put the domain from the request is originated.

That worked for me.