The CORS Filter Configuration on TIBCO iProcess Administration Console
By default, the web.xml ($SWDIR/tomcat/webapps/API/WEB-INF/web.xml) file contains the cross-origin resource sharing (CORS) filter with the following highlighted section commented out with param-value as ‘*’.
To introduce the filter without any restriction, you can remove the highlighted comment in filter param.
To introduce the filter with added restriction, you can replace ‘*’ with the following iPAC login url:
iPAC login URL: https://rhel76.centralindia.cloudapp.azure.com:8443/ipac/
Entry in web.xml ($SWDIR/tomcat/webapps/API/WEB-INF/web.xml) file to apply CORS filter is given in the following example.
<filter>
<filter-name>CorsFilter</filter-name>
<filter-class>org.apache.catalina.filters.CorsFilter</filter-class>
<init-param>
<param-name>cors.allowed.origins</param-name>
<param-value>https://rhel76.centralindia.cloudapp.azure.com:8443</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.methods</param-name>
<param-value>GET,POST,HEAD,OPTIONS,PUT</param-value>
</init-param>
<init-param>
<param-name>cors.allowed.headers</param-name>
<param-value>login,token,isSlave,Pragma,Cache-Control,Content-Type,X-Requested-With,accept,Origin,Access-Control-Request-Method,Access-Control-Request-Headers,Access-Control-Allow-Origin</param-value>
</init-param>
<init-param>
<param-name>cors.exposed.headers</param-name>
<param-value>Access-Control-Allow-Origin,Access-Control-Allow-Credentials</param-value>
</init-param>
<init-param>
<param-name>cors.preflight.maxage</param-name>
<param-value>10</param-value>
</init-param>
</filter>
<filter-mapping>
<filter-name>CorsFilter</filter-name>
<url-pattern>*</url-pattern>
</filter-mapping>