...
Initial ticket:
Jira Legacy | ||||||||
---|---|---|---|---|---|---|---|---|
|
To prevent cross site data interception, 'Origin' header whitelist has been implemented for API queries
Technical Details
Whitelist can be configured in WMS Settings > PBX > Security
Settings are stored in /rw2/etc/pbx/http-security.conf .conf
Different domains are supported for configuration e.g.
Origin: 'https://pbx.wildix.com' is hardcoded in whitelist
Attention
Partners must be informed that any webapi / pbxapi integration will stop working if the domain is not added to the whitelist