Hypermode | Get AI features into production faster
Sign In
Contact Us
Docs Tutorials
Ask a Question

Restrict origins

To restrict origins of HTTP requests :

  1. Add lines starting with # Dgraph.Allow-Origin at the end of your GraphQL schema specifying the origins allowed.
  2. Deploy the GraphQL schema either with a schema update or via the Cloud console’s Schema page.

For example, the following will restrict all origins except the ones specified.

# Dgraph.Allow-Origin "https://example.com"
# Dgraph.Allow-Origin "https://www.example.com"

https://cloud.dgraph.io is always allowed so that API explorer, in Dgraph Cloud console, continues to work.

Note
  • CORS restrictions only apply to browsers.
  • By default, /graphql endpoint does not limit the request origin (Access-Control-Allow-Origin: *).

Turn on the lights

Ask a Question Edit the page Report an issue
Dgraph
Product Solution Pricing Contact Us
Company
About Us News/Press Careers
Resources
Docs Tour Forum Community
Blog Whitepapers Case Studies

All rights reserved © 2023 Dgraph

Legal Notices