https://www.growthbook.io/ logo
#announcements
Title
# announcements
e

enough-camera-24490

08/29/2022, 7:18 PM
Anyone have issues with multiple accept origin headers being sent from a self hosted solution
f

fresh-football-47124

08/29/2022, 7:19 PM
Hi Grant, what is your APP_ORIGIN setting?
you can also set the environment variable: CORS_ORIGIN_REGEX
e

enough-camera-24490

08/29/2022, 7:22 PM
I'm going to have to wait for my coworker to get back to me with access credentials to the server. I will reply tomorrow.
f

fresh-football-47124

08/29/2022, 7:22 PM
okay!
e

enough-camera-24490

08/29/2022, 7:22 PM
Thank you so much for the quick response. I really appreciate it
@fresh-football-47124 APP_ORIGIN: https://growthbook.fm.co:3000
And I get two response headers for Access-Control-Allow-Origin
@fresh-football-47124 I don't see the CORS_ORIGIN_REGEX variable in the docs. What would this do for me in this situation?
f

fresh-football-47124

08/30/2022, 5:22 PM
well, depends a bit on where the other header is coming from
are you running self hosted growthbook in docker?
the CORS_ORIGIN_REGEX is added to the APP_ORIGIN when determining the CORS headers
but it should be a comma separated list, not two headers.
e

enough-camera-24490

08/30/2022, 5:55 PM
Self hosted in docker
APP_ORIGIN is https://growthbook.fm.co:3000 But its also sending an origin header of '*' which is confusing
32 Views