Odoo 17 CORS Error while triggering an api from client website

Odoo is the world's easiest all-in-one management software.
It includes hundreds of business apps:

CRM
e-Commerce
Comptabilitat
Inventari
PoS
Project
MRP

All apps

All Posts People Badges

Etiquetes (View all)

odoo accounting v14 pos v15

About this forum

Ajuda

Odoo 17 CORS Error while triggering an api from client website

api CORS cors

3678 Vistes

Rajesh Dattathri Bobade

I am encountering a CORS (Cross-Origin Resource Sharing) error when making a POST request to an API endpoint in Odoo from a web page. The error occurs when the browser attempts to send data to the endpoint, while the request works fine using tools like Postman. The browser’s console shows a CORS error indicating that the request is blocked due to missing or incorrect CORS headers. Despite including headers like Content-Type: application/json the issue persists. The Odoo server logs indicate that an OPTIONS request is sent before the POST request, which is typical for preflight requests to check CORS permissions. However, the server-side configuration may not be set up to handle these OPTIONS requests correctly.
This is my route

@http.route('/api/create_employee', type='json', auth='none', methods=['POST'], csrf=False, cors='*')

This is my header

response = request.make_response(
    json.dumps({'message': 'Employee created successfully'}),
    headers={
        'Access-Control-Allow-Origin': '*',  # Adjust to restrict access as needed
        'Access-Control-Allow-Methods': 'POST, GET, OPTIONS',
        'Access-Control-Allow-Headers': 'Origin, Content-Type, Accept, Authorization, talview-odoo-api',
        'Access-Control-Allow-Credentials': 'true',
        "Content-Type": "application/json"
}
)
return response

Thank you in advance for your help!

web mold

Hi, did you find a solution?

Milan Topuzov

Looks like Odoo doesn't care about us. They have their own implementation for the JSON RPC and they're using that for enterprise. There have been CORS errors reported on this forum for over a year without any solution from the company or the community.

Christoph Farnleitner

Add an executable example of your source and I'm sure a solution can be found. JSON RPC is certainly NOT limited to Enterprise setups. Also, did you try to actually work your way through https://www.odoo.com/documentation/18.0/developer/reference/external_api.html?

Rajesh Dattathri Bobade

Autor

Hi, there was nothing I could do at Odoo's end. I tried every possible way but it still was not working.
The only solution that I found was that to setup a reverse proxy at the client's end so that it sends a request to the client's domain instead of odoo's domain directly.

Not sure if there was any solution apart from setting up reverse proxy at client's end. Hopefully, someone has a solution for this issue

Enjoying the discussion? Don't just read, join in!

Create an account today to enjoy exclusive features and engage with our awesome community!

Registrar-se

Related Posts	Respostes	Vistes
CORS Policy issue with Odoo.sh restfulapi CORS cors	2 de jul. 25	1325
odoo version_info endpoint webclient api CORS API	1 de març 24	1260
how to disabled CORS policy in odoo. api odoo CORS Odoo13.0	0 de set. 23	8129
API xmlrpc - upload pdf bills to account api	0 de jul. 25	77
Odoo API connection credential - How to get these credentials? api	1 de juny 25	1839

This question has been flagged

Enjoying the discussion? Don't just read, join in!