Bosch IoT Device Management - will be discontinued by mid 2024

Cross-origin resource sharing - CORS

How do you deal with client-side cross-origin requests - CORS?


The digital twin layer supports cross-origin resource sharing (CORS) for some enabled hosts.

You can benefit from this mechanism by enabling client-side cross-origin requests. If your Web application is hosted on one of those enabled hosts, you can use the Bosch IoT Things HTTP API (i.e. our REST-like resources) directly from your Web UI without the need for a proxy mechanism on your back end.

Allowed hosts

Currently we have enabled only “well-known” hosts from our perspective.

On demand, we could of course enlarge the trusted circle. In case of interest, please let us know which domain you need enabled.

Customers who want to use cross-origin HTTP requests from another domain can contact us via https://bosch-iot-suite.com/support/.