CORS Error - Verification process

dannysuarez · November 19, 2020, 6:21pm

Hi Guys,

We are really familiar with the usage of Blockcerts verification process.

In order to be able to activate the verification we used to give CORS permissions to the Blockcerts official URL to our public key JSON file https://mydomain.com/publicKey.json in our domain and also the revokation list JSON file https://mydomain.com/revokationList.json.
Recently, we are getting the following error “Computed hash does not match remote hash” .

Checking the network logs we found that it is necessary to enable the following address as well https://mydomain.com/api/event/certificate.
Access to XMLHttpRequest at ‘https://mydomain.com/api/event/certificate’ from origin ‘https://www.blockcerts.org’ has been blocked by CORS policy: Response to preflight request doesn’t pass access control check: No ‘Access-Control-Allow-Origin’ header is present on the requested resource…
Is it necessary or there is a way to tell the verifier during the issuing process to avoid the verification in that address.

Regards,

Danny S.

ampatt97 · November 20, 2020, 5:32pm

Make sure you have Access-Control-Allow-Origin at https://mydomain.com
I’m not 100% but I think that the “computed hash doesn’t match remote” has to do with the content of the json changing from the time it was issued.

Topic		Replies	Views
Error: Computed hash does not match remote hash Support	3	1819	September 10, 2018
Computed hash does not match remote hash Support	1	225	August 30, 2023
Cannot get issuer profile & Error: Provisonal headers are shown Support	2	928	August 30, 2018
Certs don't validate when app is on Comcast's network Technical	4	687	October 4, 2018
Verification site failed to process Support	0	277	April 24, 2023

CORS Error - Verification process

Related Topics