Leonardo Cartaxo
Reputation: 313
Adding a server to nestjs swagger gives a permission error
When I add new server to a nestjs DocumentBuilder .addServer('http://localhost:7071') it thows a permission error when I try to execute routes at generated swagger page.
At the browser console it thows this error:
Refused to connect to 'http://localhost:7071/api/session/signin' because it violates the following Content Security Policy directive: "default-src 'self'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.
Refused to connect to 'http://localhost:7071/api/session/signin' because it violates the document's Content Security Policy.
I already enable cors at the nestjs app with no luck!
app.enableCors();
Maybe I'm missing some security policy at the DocumentBuilder? Something like .addSecurity()? If it is the case How can I add this security policy?
Upvotes: 3
Views: 5510
Answers (1)
harian
Reputation: 445
This error is caused by wrong CORS config. To fix it:
- Update swagger by adding :
.addServer('http://localhost:3000')
- Add origin in CORS config (the address you're using) :
app.enableCors({origin: 'http://localhost:3000'});
Upvotes: 7
Related Questions
- @nestjs/swagger does not set authorization headers
- How to fix CORS Error when using the Nest JS framework
- NestJs Swagger for Postman
- How to use externally generated swagger.json in NestJS?
- Configure swagger with Nestjs + Azure functions
- How to install Swagger in Nestjs?
- Nest + Swagger not recognizing endpoints or parameters
- How to update NestJS Swagger module but use OpenAPI 2.0(Swagger)?
- NestJs swagger missing base path
- Nestjs swagger issue