Your Achievements
Level 1
0% to
Level 2
Next /
to gain points, level up, and earn exciting badges like the new Applaud 5 BadgeLearn more!
View All BadgesSign in to view all badges
Open Alert Bar

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Anonymous
Not applicable
‎10-27-2014 08:30 AM
‎10-27-2014 08:30 AM

XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Trying to send an ajax request to Marketo from a browser form. using jquery to create the ajax request, but keep getting the CORS error from the server. Anyone have any suggestions on how to get the responding server (marketo) to allow CORS requests? 
 
Tags (1)
0 Likes
1,922
Reply
7 REPLIES 7
Anonymous
Not applicable
‎10-27-2014 09:05 AM
‎10-27-2014 09:05 AM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

I dont think the server is dening the request, it is the client borwser that for security does nto allow a request to be sent to a different domain (or sub domain). Depending of what you want to do JSONP migt be the way to solve it.

 
1,750
Reply
Anonymous
Not applicable
‎10-27-2014 09:07 AM
‎10-27-2014 09:07 AM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

What are you calling on the Marketo side? Another form or the APIs?
0 Likes
1,750
Reply
Anonymous
Not applicable
‎10-27-2014 09:14 AM
‎10-27-2014 09:14 AM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Calling the leads.json API. I'm passing the "Access-Control-Allow-Origin": "*", headers and a few others to be extra verbose, but it's still not accepting the request.

I'm using this to generate the Access token: http://developers.marketo.com/blog/quick-start-guide-for-marketo-rest-api/,

I just realized though, that this token is probably not persistent, and probably needs to be recreated at regular intervals I'm guessing?  That's not the issue as non-expired tokens (which work in a REST console, or straight browser), but it's /an/ issue I need to fix.
0 Likes
1,750
Reply
Kenny_Elkington
Marketo Employee
Marketo Employee
‎10-27-2014 10:35 AM
‎10-27-2014 10:35 AM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Hey Ben,

What's you're reasoning for doing this client-side?  Exposing the access token to be client-facing opens you up to some serious security issues.  You should really only be executing this from the server side, and then sending any relevant data to the client with your page load.
0 Likes
1,750
Reply
Anonymous
Not applicable
‎10-27-2014 10:49 AM
‎10-27-2014 10:49 AM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Proof of concept for now to ensure that the integration is being done properly, and the data is being pushed across to the server properly. We'll move all this to server side as a next step, but quick and dirty on a non-public site this is the fastest way to ensure data is being passed correctly.
0 Likes
1,750
Reply
Anonymous
Not applicable
‎10-27-2014 01:07 PM
‎10-27-2014 01:07 PM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

Tried it with php curl server-side and just get 500 errors, so something I'm doing still isn't functioning properly.
0 Likes
1,750
Reply
Anonymous
Not applicable
‎10-27-2014 04:02 PM
‎10-27-2014 04:02 PM

Re: XMLHttpRequest cannot load. No 'Access-Control-Allow-Origin' header is present on the requested resource.

@Ben, you are correct. The token expires every hour, so it needs to be refreshed at a regular interval. 
0 Likes
1,750
Reply
Home