I started the Errbit in an subdomain with unicorn and NGINX.
If I try to use the notifier.js it tries to open an iframe with the following errir:
server {
#Basic Listener Stuff
listen *:443 ssl;
#certificate
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_certificate /home/errbit/ssl/certificate.crt;
ssl_certificate_key /home/errbit/ssl/certificate.key;
#index related stuff
error_log /home/errbit/logs/error.log;
access_log /home/errbit/logs/access.log combined;
add_header 'Access-Control-Allow-Origin' *.
xx.com;
location / {
proxy_set_header X-Forwarded-Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
client_max_body_size 10M;
add_header 'Access-Control-Allow-Origin' *.
xx.com;
}
}
server{
listen *:80;
return 301 https://$host$request_uri;
}
Where am I mistaken.
In the Application, where I'm using the javascript catcher, I got the same origin policy rule set.