Overview:
The Esri Javascript API is capable of requesting JSONP responses, which are one strategy for obtaining data from a server on another domain.
Ongoing efforts to improve security have introduced newer and better methods of performing these operations, such as CORS. Some customers may wish to disable the JSONP behavior in Essentials to improve security.
Solution:
If your Essentials sites use a single host, you can safely disable JSONP. If your sites use multiple hosts that support CORS then you may also safely disable JSONP.
To disable JSONP, add an Application Setting to the Essentials REST web application with the name:
gcx.security.disableJsonP
And the value true.
This application setting is supported in Geocortex Essentials 4.13.3 and later.
The Esri Javascript API is capable of requesting JSONP responses, which are one strategy for obtaining data from a server on another domain.
Ongoing efforts to improve security have introduced newer and better methods of performing these operations, such as CORS. Some customers may wish to disable the JSONP behavior in Essentials to improve security.
Solution:
If your Essentials sites use a single host, you can safely disable JSONP. If your sites use multiple hosts that support CORS then you may also safely disable JSONP.
To disable JSONP, add an Application Setting to the Essentials REST web application with the name:
gcx.security.disableJsonP
And the value true.
This application setting is supported in Geocortex Essentials 4.13.3 and later.
Comments
0 comments
Article is closed for comments.