Hi Telerik team,
When we enable Skin CDN server, the editor throws "Cross-Origin Request Blocked" error in "Insert external video" popup windows. We have added settings in the web.config on our production server and CDN server. Is there anything we missing?
<httpProtocol>
<customHeaders>
<add name="X-Powered-By-Server" value="150" />
<add name="Access-Control-Allow-Origin" value="*" />
<add name="access-control-allow-headers" value="*" />
</customHeaders>
</httpProtocol>
Please check the attachment for more detail.
Thanks in advance,
Lan
6 Answers, 1 is accepted
I tested the same scenario locally, but to no avail. Resources are loaded properly with the 2015.3.930 version. You can see the results on my end via this screencast—http://screencast.com/t/Mc2PnXmOwjB.
Is the dialog customized somehow?
Regards,
Ianko
Telerik
Rank 1
Hi lanko,
Could you please send me the zip file of the test project? I try to compare what's the difference between your project and my project.
Thanks in advance,
Lan
You can find the project attached.
Regards,
Ianko
Telerik
Rank 1
Hi Lanko,
Thanks for replying so fast. I believe I didn't say it very clear from my previous post. We have our own CDN server and we enable CDN and base url is point to our CDN server.
I changed your code by changing to our CDN server. It has the same problem as before. Could you please take a look?
Changes I made
Web.Config
adding following in <system.webServer> section
<httpProtocol>
<customHeaders>
<add name="Access-Control-Allow-Origin" value="*" />
</customHeaders>
</httpProtocol>
Default.aspx:
<telerik:RadScriptManager runat="server" ID="scriptmanager" EnableCdn="true" CdnSettings-BaseUrl="http://radscriptcdn.sharpschool.com" CdnSettings-BaseSecureUrl="https://radscriptcdn.sharpschool.com" ></telerik:RadScriptManager>
<telerik:RadStyleSheetManager runat="server" ID="styleSheetManager" CdnSettings-TelerikCdn="Enabled" CdnSettings-BaseSecureUrl="http://radskincdn.sharpschool.com" CdnSettings-BaseUrl="https://radskincdn.sharpschool.com" ></telerik:RadStyleSheetManager>
Thanks,
Lan
Rank 1
Hi Lanko,
I also change the Telerik dll to our 2015.3.930.40 version.
Thanks,
Lan
I suggest you to examine why using this particular custom CDN fails to load the font through SSL connection.
Also, as you can see the resource is requested from a non-SSL URL and thus, causing the cross-site access problem. So you should see why in an SSL-enabled connection, the resource is not handled properly. Note that in the configuration provided, the CdnSettings-BaseSecureUrl property is set to a non SSL URL. Try if correcting this resolves the issue.
With the Telerik CDN, using SSL, requests are properly handled and I am not sure what it might fail with using a custom one.
Regards,
Ianko
Telerik