Page History
...
- By default, the DSpace REST API / Backend will only trust the application at
dspace.ui.url. Therefore, you should first verify that yourdspace.ui.urlsetting (in your local.cfg) exactly matches the public URL of your User Interface (i.e. the URL you see in the browser). This must be an exact match: mode (http vs https), domain, port, and subpath(s) all must match. - If you need to trust additional client applications / URLs, those MUST be added to the
rest.cors.allowed-originsconfiguration. This should be comma-separated list of trusted URLs. If you customize that setting, MAKE SURE TO include "${dspace.ui.url}" in that setting if you wish to continue trusting the UI. Again, keep in mind any URLs added to this setting must be an exact match: mode (http vs https), domain, port, and subpath(s) all must match.. So, for example, these URLs are all considered different applications: "http://mydspace.edu", "http://mydspace.edu:4000" (different port), "https://mydspace.edu" (http vs https), "https://myapp.mydspace.edu" (different domain), and "https://mydspace.edu/myapp" (different subpath).
...
Overview
Content Tools