We got a small FileMaker solution for filling data into a form. Simple database, one page. Users can access that form via webdirect.
Windows 2016 Server located in a DMZ (Demilitarized Zone), FMS18.04
To get the data into the local system (LAN only, no direct access from outside the company, home-office users are on VMWare Horizon), we get the data via API-calls to the forms-server into the local fms solution
So far, so good...
But the company's CISO tested the FMS and found a leak 'Cross-origin resources sharing: arbitrary origin trusted' and wants us to fix that. The path for the culprit is /fmi/webd/PUSH
I believe that we as FM developers can do nothing in this game - but I do not know enough about cors
Does anybody have expierience with that?
Thank You so much for any help, tips, suggestions