How to resolve CORS error when hitting the API through frontend app using XHR
Is there any way to whitelist my frontend app URL?
With Square we require a server side calls with our APIs. You’ll need to have this code written in PHP, ASP, Ruby, Java, or similar on the back end. This is code that runs behind the scenes on your hosting provider.
We do not allow API calls directly from the browser. This would expose your API credentials, which would allow anyone to gain access to your Square account. 