CORS Support for Orion Context Broker

May 27, 2015Tech

The latest release of Orion Context Broker (0.22) includes CORS support for GET requests. What that means in practice? It means that you can query context data from your Web App without having to develop a server-side component to act as a proxy for Orion.

How to activate it?

First you need to start Orion with the option '-corsOrigin'. That option allows you to specify what origins are allowed to query your Orion Context Broker. So if your application origin is http://www.example.com, then you should run contextBroker -corsOrigin http://www.example.com. If you do not know in advance what is going to be the origin of your app you can specify the special value '__ALL' . That would mean that any Web origin will be allowed to get data from your Orion Context Broker.

This code snippet shows how would you query context by using XHR (AJAX).

Future Work

What about other operations? Future releases of Orion Context Broker will allow to perform POST or DELETE operations following the same schema . Nonetheless, typically Web Apps would act as context data consumers and that's why we have given priority to GET requests.

Cookie	Domain	Expiration	Purpose	Intrusiveness level
PHPSESSID	i4trust.org	Session	PHP session cookie associated with embedded content from this domain.	Medium

Cookie	Domain	Expiration	Purpose	Intrusiveness level
_ga	.spotlightr.com	2 years	Google Analytics to count and track pageviews.	Medium
_ga	.hotjar.com	2 years	Google Analytics to count and track pageviews.	Medium
_ga	.fiware.org	2 years	Google Analytics to count and track pageviews.	Medium
_gaexp	.spotlightr.com	3 months	Google Analytics.	Medium
_gat	.fiware.org	1 hour	Google Analytics.	Medium
gat_gtag_UA*_1	.fiware.org	1 hour	Google Tag Manager to store and track conversions.	Medium
_gid	.spotlightr.com	1 day	Google Analytics to count and track pageviews.	Medium
_gid	.hotjar.com	1 day	Google Analytics to count and track pageviews.	Medium
_gid	.fiware.org	1 day	Google Analytics to count and track pageviews.	Medium

Cookie	Domain	Expiration	Purpose	Intrusiveness level
_hjFirstSeen	.hotjar.com	30 minutes	Hotjar cookie unclassified	Medium
_hjTLDTest	.hotjar.com	Session	Hotjat to get temporal information about cookies path.	Low
_hjTLDTest	.fiware.org	Session	Hotjat to get temporal information about cookies path.	Low
_hjid	.hotjar.com	1 year	Hotjar to store a unique user ID.	Medium
_hjid	.fiware.org	1 year	Hotjar to store a unique user ID.	Medium
ajs_anonymous_id	.hotjar.com	1 year	Atlasian Jira Servicedesk to store last visit.	Medium
datr	.facebook.com	2 years	Facebook to provide fraud prevention.	Medium
etBloomCookie_optin_*	www.fiware.org	1 day	This cookies helps us manage the sign-up to our mailing lists.	Medium
et_bloom_optin_optin_4_*_imp	www.fiware.org	1 year	Captures the Name and Email ID for Newsletters.	Medium
fr	.facebook.com	3 months	Facebook to Enable ad delivery or retargeting.	Medium
ginger-cookie	www.fiware.org	1 year		Medium
intercom-id-*	.spotlightr.com	9 months	Intercom Messenger.	Medium
intercom-session-*	.spotlightr.com	7 days	Intercom Messenger.	Medium
sb	.facebook.com	2 years	Facebook to store browser details.	Medium
viewerId	www.fiware.org	3 months	The viewerID cookie allows the site to retain your product viewing history across sessions.	Medium
vooplayerVideo*	www.fiware.org	Session	It serves to determine which part of the video the user has stayed.	Medium

CORS Support for Orion Context Broker

How to activate it?

Future Work

Related articles

Great Success: FIWARE became an eye-catcher at Smart City Expo World Congress 2023

Unlocking the future: FIWARE goes Smart City Expo World Congress 2023

Meet FIWARE at Smart City Expo World Congress 2022