Missing PostgREST CORS UI / Add Allowed Origin
Hello everyone,
I'm facing a blocking issue and I'm hoping someone from the community or team can help.
The Problem:
My web application, hosted at the preview URL https://*.dev21.app-preview.com, is getting TypeError: Failed to fetch on all API calls to my Supabase project (/rest/v1/...).
Diagnosis:
After extensive debugging, we are 99.9% certain this is a CORS issue, as my development URL is not on the list of allowed origins.
The Mystery:
The problem is that the "CORS settings" / "Additional Allowed Origins" UI is completely missing from my project dashboard, so I have no way to add my URL.
What I've already checked:
• I am the Owner of the project.
• It's a hosted supabase.co project (ref: ivbpjrfvmjaoucazoceu).
• I have confirmed the CORS setting is NOT in any of the following locations in my dashboard:
• Project Settings -> Data API
• Project Settings -> Infrastructure
• Authentication -> URL Configuration
• Authentication -> Advanced
• I've opened a support ticket (SU-260591), but as a Free plan user, I was advised to ask the community here.
My Question:
1. Has anyone else experienced the CORS settings UI disappearing from their dashboard?
2. Is there a new, hidden location for this setting that I'm not aware of?
3. Is there a way to add an allowed origin programmatically (e.g., via the Supabase CLI) without using the missing UI?
Any help would be greatly appreciated.
Thank you!
1 Reply
@DATACG It is not a CORs issue highly likely AND there are no CORs settings for the Supabase REST API. It lets all requests thru.
You'll have to provide some info on your calls. Check if you are even generating network requests if you can (failed to fetch can occur before the request even goes out), and check your API Gateway log if you have any requests auth or otherwise working.
What is a preview URL?