CORS enabled image


(Klaasnienhuis) #1


I've been looking at adding textures through the viewer API. The image should be CORS enabled, which is not very difficult to do. But I've noticed the image should also have an https url. Is it possible to lift this requirement? Or does that compromise security too much?

If it means I have to get an SSL certificate to add a texture through the API then so be it. But it's quite a hurdle for most users to set up.

(Mauricesvay) #2

As far as I know, you need images to be CORS enabled and served with HTTPS for them not to be tainted.