Error of 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'

[trzczy]

I have Revive Adserver ver. 3.1.0 on php 5.3. I prepared the pre-roll inline video zone and I am getting this error in the browser, when starting video.

Failed to load http://ads.twojatv.info/www/delivery/fc.php?script=bannerTypeHtml:vastInlineBannerTypeHtml:vastInlineHtml&format=vast&nz=1&zones=pre-roll%3D32: The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. Origin 'http://twojatv.info' is therefore not allowed access. The credentials mode of requests initiated by the XMLHttpRequest is controlled by the withCredentials attribute.

How to fix it?

Thank you

[trzczy]

I noticed the same issue with Revive Adserver ver. 4.1.1 on another server:

Failed to load http://rigby.ga/www/delivery/fc.php?script=bannerTypeHtml:vastInlineBannerTypeHtml:vastInlineHtml&format=vast&nz=1&zones=pre-roll%3D1: The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. Origin 'http://rigby.ml' is therefore not allowed access. The credentials mode of requests initiated by the XMLHttpRequest is controlled by the withCredentials attribute.

Any idea?

[Matteo Beccati]

Every delivery scripts, except async JS, sends the Access-Control-Allow-Origin: * header, but not Access-Control-Allow-Credentials.

I wasn't aware of VAST1 compatible JS HTML5 video players, but it seems like there are some?

[trzczy]

I test fluid-player. https://github.com/fluid-player/fluid-player

"Fluid Player is a new free HTML5 video player. It is lightweight, easy to integrate and has advanced VAST* capabilities."

But they use pre-roll so what would be to repair in my Revive Adserver - Fluid Player configuration?

[Maro]

Did you solved this problem?

[trzczy]

nope

[Maro]

I started a thread here in case you want to follow: