pzpega_ui_backbone_1798164053!pzpega_ui_jstree_1188219908!pzpega_ui_designer_tree_bundle_12945517662!!.js:5 Uncaught SecurityError: Blocked a frame with origin "https://someclient.pegacloud.com" from accessing a frame with origin "https://secure.somedomain.com". Protocols, domains, and ports must match.
pzpega_ui_backbone_1798164053!pzpega_ui_jstree_1188219908!pzpega_ui_designer_tree_bundle_12945517662!!.js:5 Uncaught TypeError: Cannot read property 'start' of undefined
We would like to relax the same origin policy on the IAC instance by enabling cross-origin resource sharing (CORS). Specially, adding “https://secure.somedomain.com” to the Access-Control-Allow-Origin header. See:
In fact, prgateway should not be needed nor should you sacrificing CORS. You can setup a reverse proxy between your own web app hosting IAC gadgets and that of the pega application servers. Check how to setup reverse proxy here: https://pdn.pega.com/how-configure-reverse-proxy-server. Option A.