Request Profile "foot-hiking" Gets Blocked by CORS Policy


when putting in a request to ORS with the profile “foot-hiking”, the request gets blocked by ORS’ CORS policy. However, the exact same request with the profile “foot-walking” works fine. I tried “foot-hiking” on the API playground [Directions Service (POST) (javascript)] too and got the error message “Invalid API key or access to this API has been disallowed”.

Am I missing any recent changes in the API?

Best regards Uli

Hi @UliE,

that’s due to the profile server being down.
Our user management middleware, sadly still doesn’t return the Access-Control-Allow-Origin=* header if validation fails or the server it forwards to is not responding.

Best regards


thx a lot for your quick reply

Best regards Uli