Is it possible to disable cors fully for testing I m getting

Question

Is it possible to disable cors fully for testing I m getting an error saying that wildcard can t be used when credentials mode is include

rp · Answer

Uhmm If your frontend and backend domains are the same CORS won t be needed then

rp · Answer

But otherwise you will have to use CORS im afraid No getting around that

rp · Answer

Also if you are not using cookies then you don t need to use `credentials include`

PitchAsh · Answer

During testing browser is localhost but testing against a deployed dev sever

PitchAsh · Answer

Dev server also has a deployed dev app So this is just a case of local testing against a hosted server postman works fine but cors is preventing the frontend developer from being able to test locally against the dev server

PitchAsh · Answer

Other cases the backend dev is using ngrok to expose his local server and the frontend dev is trying to debug locally but using that developers ngrok instance

PitchAsh · Answer

So in these cases we need to configure cors to with a wildcard

PitchAsh · Answer

Our existing Authenticator works fine in this way we just can t get supertokens to work on this setup

rp · Answer

hmmm I see

rp · Answer

Can we get on a call to explore options for solutions

rp · Answer

If yes please feel free to book a time here https supertokens com call user

PitchAsh · Answer

I ll try a few more things first I just need cors to work with wildcard domain Is that possible with suportoken

PitchAsh · Answer

I just found the anticsrf = none I ll try that

rp · Answer

> Is that possible with suportoken I ll have to get back to you on this

rp · Answer

Hey < PitchAsh> you could try and disable cors in chrome by doing this https alfilatov com posts run chrome without cors

rp · Answer

Of course this is only for development purposes

rp · Answer

Would this work for you

PitchAsh · Answer

Will test