Getting Invalid CORS request

I am trying to create a meeting from Postman on my local machine.

The following is the JSON I am using

  "topic": "Test Meeting",
  "type": 2,
  "start_time": "2019-09-20T16:54:14Z",
  "duration": 60,
  "schedule_for": "email",
  "timezone": "America/Los_Angeles",
  "password": "jvfbv32@H",
  "agenda": "Some agenda",
  "recurrence": {
    "type": 1,
    "repeat_interval": 2,
    "weekly_days": "1",
    "monthly_day": 1,
    "monthly_week": 1,
    "monthly_week_day": 1,
    "end_times": 2
  "settings": {
    "host_video": true,
    "participant_video": true,
    "cn_meeting": false,
    "in_meeting": true,
    "join_before_host": true,
    "mute_upon_entry": true,
    "watermark": true,
    "use_pmi": false,
    "approval_type": 0,
    "registration_type": 1,
    "audio": "both",
    "auto_recording": "none",
    "enforce_login": false,
    "enforce_login_domains": "string",
    "alternative_hosts": "string",
    "global_dial_in_countries": [
    "registrants_email_notification": false

STATUS 403: Invalid CORS request

Which App Type (OAuth / Chatbot / JWT / Webhook)?
I am using JWT as Bearer Token

Which Endpoint/s?{email_as_user id}/meetings/

How To Reproduce (If applicable)
Steps to reproduce the behavior:

  1. Post the JSON to said endpoint
  2. Use JWT for Auth

I am suspecting that I can’t create meetings with JWT. is it so?

If I need to use OAuth for this, where do I find clientid?

Hi @debjyoti.biswas.che1,

You can test with either JWT or OAuth in Postman. I have a feeling this is related more to your environment. I’d recommend checking out this stack overflow post (it’s a little older, but still links to the Relevant Postman docs):

In regards to OAuth, if you want to test this in Postman, you’ll need to first create an OAuth app in the marketplace and then you can access the Client ID in the credentials section:

I recommend testing with a User-Level OAuth app, if you do so.

I hope this helps!

@will.zoom You were right, I was confused because Postman should never give CORS exception but it turns out I was running the Chrome Postman App.

So I did it via curl and worked like a charm.

Hey @debjyoti.biswas.che1,

Ah, glad to hear it! Thanks for letting me know.