As of September 1, 2025, security guidelines for the integration of DocuWare Cloud elements (web forms, result lists, etc.) into other web applications will be increased. These applications must now be entered in the new configuration module "Central Gateway Settings" by August 31, 2025, at the latest so that the integrations will work as usual.
On September 1, 2025, DocuWare will set the CORS policy (Cross-Origin Resource Sharing i.e. the security guidelines for loading web applications in third-party domains), to "zero" for DocuWare Cloud. This means that from then on, elements of DocuWare Cloud can only be loaded into websites or other web applications if they are entered in the central gateway.
All customers who integrate elements of DocuWare Cloud into web applications. Examples include:
Affected customers must enter the addresses of the corresponding websites in the new configuration module “Central Gateway Settings” by August 31, 2025, at the latest, so that integrations will work as usual. This module is located within the DocuWare configuration in the General area.
In non-registered domains, DocuWare Cloud elements will no longer be loaded, so they will no longer be visible on corresponding websites.
For more information, see this Knowledge Base Article English