Is Bosch camera blocked due to the browser CORS policy during its access from a web server hosted on a different IP?

Question

Is Bosch camera blocked due to the browser CORS policy during its access from a web server hosted on a different IP?

Answer

If a camera (for e.g.: IP: 192.168.16.118) is being accessed from a web server hosted on a different IP (192.168.16.176), due to the CORS policy enforced by the browser, the video stream fails to load, and the browser console displays a CORS error: "Access to video at '...' from origin '...' has been blocked by CORS policy."

This happens because the camera's HTTP response does not include the necessary CORS headers, making it a cross-origin request that the browser blocks.

• CORS is currently not supported in Bosch camera firmware (especially RTOS-based platforms).

• There is no configuration option in the camera's web interface to manually add or modify HTTP headers related to CORS.

• This is not a field service issue, but rather a feature limitation.

• At present, there are no plans to implement CORS support in the current RTOS firmware.

• Any requests in this regard should be aligned with MKR.

CORS (Cross-Origin Resource Sharing) is a browser security feature that regulates how web applications can request resources from a different origin (domain, protocol, or port). It’s primarily designed to prevent malicious websites from accessing sensitive data on another site without explicit permission.