This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 7.000000000000001%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EED%3C/text%3E%3C/svg%3E)
Hello,
We are running a REACT app on an APP service. The APP has a BACK END in TS and a front end in REACT. In our application our customers can create posts with images. These images must be saved in a blob container.
I cannot find the best solution to authorize my front end to save these images in the container.
I have created an application registration and use "ClientSecretCredential" with "BlobServiceClient" but i receved the error :
"has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled."
Can you please help me to find the best solution.
Best regard
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 64%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ENR%3C/text%3E%3C/svg%3E)
Hi, we hope the below answer helped if yes please accept the answer, else please let us know if you have any further queries.
Hi, we hope the below answer helped if yes please accept the answer, else please let us know if you have any further queries.
I found a couple of solutions that can help you:
I hope this helps!
Remember to accept the answer if it is helpful.
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more
Hello Emmanuel de Nicolay,
Greetings! Welcome to Microsoft Q&A Platform.
I understand that you’re encountering a common issue with Cross-Origin Resource Sharing (CORS) when trying to upload images directly from your React frontend to Azure Blob Storage.
The error message - "has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled."
This typically happens when a web application tries to make a request to a different domain, and the server doesn’t allow it due to security policies. To resolve it please enable the CROS policy and the specific domain into Allow origin list of the server.
Please consider checking below factors to resolve the issue,
the CORS configuration must be done on the server handling the request, not on the requester. refer article.
Similar thread for reference - https://learn.microsoft.com/en-us/answers/questions/499977/error-fetching-data-from-asp-net-in-reactjs, https://stackoverflow.com/questions/31276220/cors-header-access-control-allow-origin-missing.
Hope this answer helps! Please let us know if you have any further queries. I’m happy to assist you further.
Please "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.
Thank for your answer !!
The Cross-origin has been configured on the Azure Blob Storage. And all work well when I use "InteractiveBrowserCredential" but with "ClientSecretCredential" it doesn't work.
it's normal ?
InteractiveBrowserCredential is typically used for user authentication, where a user manually signs in through a web browser. This credential often has broader permissions because it leverages the user’s access rights.
ClientSecretCredential, on the other hand, is used for application authentication, where an application (rather than a user) is granted access. For this to work correctly with Azure Blob Storage, you need to ensure that the application has the necessary permissions. Specifically, you need to assign the Storage Blob Data Contributor role to the Azure AD application.
Yes, this behavior can be normal due to differences in how the two credentials work.
Check Permissions: Ensure that the Azure AD application has the Storage Blob Data Contributor role assigned at the appropriate scope (e.g., storage account, resource group, or subscription level).
refer - https://learn.microsoft.com/en-us/rest/api/storageservices/cross-origin-resource-sharing--cors--support-for-the-azure-storage-services#understanding-cors-rule-evaluation-logic for more details on limitations.