Question: I can't make changes to my Fedora repository via the API unless I'm making the requests from the same host. Why is that, and how do I change it?
Answer: Fedora's default server security settings disallow remote administrative access. This restriction can be relaxed by eithermodifying or removing a particular policy, or disabling policy enforcement.
Instructions:
Either:
1. Modifying Modify (or removing) the deny-apim-if-not-localhost.xml policy file.
See the default policy documentation in the user guide:
http://www.fedora-commons.org/confluence/display/FCR30/Fedora+Authorization+with+XACML+Policy+Enforcement
See the "Activating and Loading" instructions in the user guide:
http://www.fedora-commons.org/confluence/display/FCR30/Fedora+Authorization+with+XACML+Policy+Enforcement
Or:
2. Disabling Disable policy enforcement altogether
See the "Enabling/Disabling XACML Policy Enforcement" section in the user guide:
http://www.fedora-commons.org/confluence/display/FCR30/Fedora+Authorization+with+XACML+Policy+Enforcement