@nirina-apiqa, that appears to be a CORS error, emitted by your browser.

I'm assuming you're running Mattermost on localhost:8065, but then running your JavaScript application on a different port on localhost? By default, your browser is trying to protect you from a malicious website that would access an API on your behalf but without your consent.

If you're just developing, you can follow the instructions on https://docs.mattermost.com/administration/config-settings.html?highlight=cors#enable-cross-origin-requests-from to override the CORS setting in Mattermost and allow the connection. Another option might be to develop a plugin which runs as part of Mattermost. See https://developers.mattermost.com/extend/plugins/ for more details.

Let us know if this resolves your issue :)

Hi @nirina-apiqa

Has lieut-data's information helped resolve your issue?

Hi @nirina-apiqa , we haven't received an update so we'll assume that the problem is fixed or is no longer valid.

If you still experience the same problem, try upgrading to the latest version.

If the issue persists, reopen this issue with the relevant information and we'd be glad to help you where we can.

@lieut-data @amyblais The official 5.0.0 version seems to have the same problem, where following the instructions for setting CORS to accept "*" doesn't seem to work.

Hi @iampeter! Here's something that works for me (in Chrome), when I load this file directly into the browser:

<!DOCTYPE html>
<html>
    <head>
        <title>Test</title>
    </head>
    <body>
        <script>
            fetch('http://localhost:8065/api/v4/system/ping').then((response) => {
                if (response.status !== 200) {
                    console.log('Looks like there was a problem. Status Code: ' + response.status);
                    return;
                }

                response.json().then(console.log);
            });
        </script>
    </body>
</html>

With AllowCorsFrom set to the default "", it fails with the expected CORS error, but with it set to "*", I get the expected response logged to the system console.

Can you describe what you're seeing?

@lieut-data maybe this should go to the mattermost-redux repo then, because your example indeed works for me, but what does not work is Client4.getMe() from mattermost-redux:

Failed to load http://localhost:8065/api/v4/users/me: Response to preflight request doesn't pass access control check: The value of the 'Access-Control-Allow-Credentials' header in the response is '' which must be 'true' when the request's credentials mode is 'include'. Origin 'http://localhost:8081' is therefore not allowed access.

Reported my problem as mattermost/mattermost-redux#557

Sounds good -- let's carry on the conversation there.