Running Dagger GraphQL API errors | Dagger | Page 1

weak tree Jul 23, 2025, 2:16 AM

#

I was following this guide and it was working. Thanks for the recommendation on Studio. However, after upgrading to v0.18.14, I'm not able to access the server locally. I'm getting the following error message:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at ‘http://127.0.0.1:8080/query’. (Reason: Credential is not supported if the CORS header ‘Access-Control-Allow-Origin’ is ‘*’).

Looks like I would need to an option to set the origin, which I did not see.

Just wanted to bring this up, happy to file an issue on GH if needed.

shadow lava Jul 23, 2025, 2:17 AM

#

weird - that's what --allow-cors is supposed to fix

weak tree Jul 23, 2025, 2:25 AM

#

Apparently Apollo is setting Access-Control-Allow-Credentials and that is not allowed when cors is *

#

https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Access-Control-Allow-Credentials

Credentials include cookies, Transport Layer Security (TLS) client certificates, or authentication headers containing a username and password. By default, these credentials are not sent in cross-origin requests, and doing so can make a site vulnerable to Cross-Site Request Forgery (CSRF) attacks.

#

Damnit, ignore me... apparently I flipped this on when messing with something else facepalm

#

https://tenor.com/qgNkIp2pvoz.gif

Tenor

#Running Dagger GraphQL API errors