The
CORS
request was attempted with the credentials flag set, but the server is configured using the wildcard (
"*"
) as the value of
Access-Control-Allow-Origin
, which doesn't allow the use of credentials.
To correct this problem on the client side, ensure that the credentials flag's value is
false
when issuing your CORS request.
If, instead, you need to adjust the server's behavior, you'll need to change the value of
Access-Control-Allow-Origin
to grant access to the origin from which the client is loaded.