Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

CORS: Backend programming or frontend programming? which one to choose for creating issue using Rest

Mahesh Sherkar
Mahesh Sherkar June 26, 2020

Hi,

I’m new to Jira. I want to create issue in Jira Cloud(hosted in AWS) site using rest Post api from Angular8 site(frontend programming) but Im getting CORS error.

Error:-
“Access to XMLHttpRequest at ‘https://mysite.atlassian.net/rest/api/2/issue’ from origin ‘https://ABCD.sharepoint.com/’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: No ‘Access-Control-Allow-Origin’ header is present on the requested resource.”

Question:-
I’ve whitelisted my sharepoint site in Jira cloud site still i’m getting above CORS error. I gone through many articles but nothing works.
Is it possible to resolve above error using frontend programming like Angular8 Or Shall i use backend programming like node.js etc because its crossdomain call?

Your help with this would be greatly appreciated.

Thanks,
Mahesh S

Answer
Watch
Like Be the first to like this
928 views

1 answer

0 votes
Mehmet A _Bloompeak_
Mehmet A _Bloompeak_
Atlassian Partner
June 26, 2020

Hi @Mahesh Sherkar ,

It is not possible to fix it on the client side. Solution would be to add "Access-Control-Allow-Origin" to the response coming from the https://mysite.atlassian.net.

I understand that the Jira server is under your control in AWS. According to your AWS setup(on LB or on Ec2), you should add one the below headers to fix it.

Access-Control-Allow-Origin: *
Access-Control-Allow-Origin: ABCD.sharepoint.com

 Apart from all of the above, I want to highlight possible security gap on your calling a jira rest api from the client side. The rest api must require authentication to create issue. Do you pass the credentials of rest api on the client side?

View More Comments
Mahesh Sherkar
Mahesh Sherkar June 28, 2020

Bloompeak Support:-

 

Yes, Im using Basic authentication and im passing username:password in encoded form in the header.

Like
Mehmet A _Bloompeak_
Mehmet A _Bloompeak_
Atlassian Partner
June 28, 2020

It means that you store the credentials on the client side. Be aware that end user can see the credentials from the browser.

Like
Mahesh Sherkar
Mahesh Sherkar June 28, 2020

Actually this functionality has access to limited people(probably 1 or 2 person)  and im passing that username:password in encoded format from backend(Sharepoint list/table) through the varible. Not directly  writing down in code.

 

Is there any otherway because I dont have access on Jira Cloud (AWS jira site) to do the modification to  add "Access-Control-Allow-Origin" setting as you explained above?

Like
Mehmet A _Bloompeak_
Mehmet A _Bloompeak_
Atlassian Partner
June 28, 2020

The other solution is to call the jira rest api from your sharepoint backend.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.