@multisetai/vps 1.0.5 → 1.0.6

package/README.md

@@ -34,6 +34,38 @@ npm install @multisetai/vps three
 - Node.js 16+ and npm
 - TypeScript 5.8+ (for TypeScript projects)
 
+## Configuration
+
+### CORS Domain Whitelisting
+
+Since this SDK makes direct API calls to MultiSet servers from browser-based applications, you **must** configure Cross-Origin Resource Sharing (CORS) by whitelisting your application's domain in the MultiSet dashboard.
+
+**Why is this required?** Browsers restrict cross-origin HTTP requests for security. By adding your domain to the MultiSet whitelist, you allow your web application to make API requests to MultiSet services.
+
+#### How to Whitelist Your Domain
+
+1. Navigate to the [MultiSet Dashboard](https://docs.multiset.ai/basics/credentials/configuring-allowed-domains-cors)
+2. Go to **Credentials → Settings** tab
+3. Locate the **Domains** section
+4. Click the purple **Add +** button
+5. Enter your application's full origin (protocol + domain + port if applicable)
+
+#### Recommended Setup
+
+Add entries for both your local development and production environments:
+
+**Local Development:**
+- **Format:** `http://localhost:PORT` (e.g., `http://localhost:3000`, `http://localhost:5173`)
+- **Note:** Use the exact port your development server runs on
+
+**Production:**
+- **Format:** `https://your-domain.com` (e.g., `https://www.myapp.com`)
+- **Note:** Do not include trailing slashes
+
+> **Important:** Without whitelisting your domain, API requests will be blocked by the browser's CORS policy, and you'll see errors in the browser console.
+
+For more details, see the [MultiSet CORS Configuration Documentation](https://docs.multiset.ai/basics/credentials/configuring-allowed-domains-cors).
+
 ## Quick Start
 
 ### 1. Import the SDK

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@multisetai/vps",
-  "version": "1.0.5",
+  "version": "1.0.6",
   "description": "Multiset VPS WebXR SDK - Core client and WebXR controller.",
   "type": "module",
   "main": "dist/index.js",