When you try to open a TIBCO Spotfire Javascript API mashup in the browser (see Javascript API Overview reference), you may notice that the analysis is not loaded and you see a blank page. If you have an OnError() callback method registered, then the following error can be seen logged to the Console of Developer Tools in the browser:

 Error: ErrorOpen Description: Illegal mashup domain

Example:

This issue will be seen if you have configured specific domains in the configuration to restrict the Spotfire Server access using JavaScript API and then try to open the mashup from an unspecified domain. In general, you enable the JavaScript API in the Spotfire.Dxp.Worker.Web.config file in the following line:

 <javaScriptApi enabled="true" domain="" />

If you specify any domain names in the "domain" property above then the Spotfire Server can ONLY be accessed from those domains. If you try to access the Spotfire Server from a mashup from any other domain(s), you will get the "Illegal mashup domain" error.

To resolve, add the domain of the mashup file location to the "domain" property or remove all domains to remove the restriction in general. See the reference  Manually editing the service configuration files for more details.

This article explains the reason for the error "Illegal Mashup Domain" when viewing a TIBCO Spotfire Javascript API mashup and how to resolve it

Wiki: Javascript API Overview

• https://community.tibco.com/wiki/tibco-spotfire-javascript-api-overview

Doc: Manually editing the service configuration files

• https://docs.tibco.com/pub/spotfire_server/7.11.2/doc/html/TIB_sfire_server_tsas_admin_help/GUID-958A3AB5-7243-4837-9AEA-78AA274A6F7E.html