I have a problem with access control. I'm getting an error as if a value is already there, but I have no value setup in my htaccess. The header info is showing I have "a*" as the value for "Header set Access-Control-Allow-Origin" but I don't, and never have. I purged my cache, I deleted the htaccess and put a new one in with just "Header set Access-Control-Allow-Origin: *" and it still says "a*", only now it says I can't have two values being "a*" and "*". I opened up the developer console and I see it there, but I just don't know where it's coming from or how to find it, what file to look in to correct it.
When I don't put the 'Access-Control-Allow-Origin' in htaccess I get
Code: Select all
cors-tester.html:1 Access to XMLHttpRequest at 'https://website.com/' from origin 'https://myxml.in' has been blocked by CORS policy: The 'Access-Control-Allow-Origin' header contains the invalid value 'a*'.
Code: Select all
Access to XMLHttpRequest at 'https://website.com/' from origin 'https://myxml.in' has been blocked by CORS policy: The 'Access-Control-Allow-Origin' header contains multiple values 'a*, *', but only one is allowed