Description:
I have successfully deployed a local instance of the INSPIRE Validator (ETF Web Application) using Docker. While the application works perfectly in a local environment (localhost), when access to /validator/test-selection/index.html we are encountering a 403 Forbidden error loading webtools.europa.eu/load.js in our production-ready environment under an official institutional domain.
Context:
Domain: https://mapas-gis-intra.carm.es (Regional Government of Murcia, Spain).
Infrastructure: The application is behind an Apache Reverse Proxy.
Error: The browser fails to load the script https://webtools.europa.eu/load.js in /validator/test-selection/index.html and the test-selection dont work.
Technical Details:
CloudFront Block: The 403 error is being returned by the Amazon CloudFront CDN used by the European Commission.
Referrer Policy: We have already configured our server to send a valid referrer using Header always set Referrer-Policy "strict-origin-when-cross-origin". Despite the request now including the correct Referer header, the access is still denied.
Restricted Environment: Our server is located in a high-security zone with restricted outbound internet access. While the client (browser) can reach the internet, the server itself cannot act as a proxy to fetch these resources.
Issue: We suspect our domain carm.es or the specific subdomain is not included in the Webtools/CloudFront whitelist.
Request:
Could you please provide guidance on how to request the whitelisting of our domain for webtools.europa.eu? Alternatively, is there a recommended way to run the validator in "offline" mode or with locally hosted assets to avoid dependencies on external JS loaders that are subject to domain-based blocking?
Thank you for your support.

Description:
I have successfully deployed a local instance of the INSPIRE Validator (ETF Web Application) using Docker. While the application works perfectly in a local environment (localhost), when access to /validator/test-selection/index.html we are encountering a 403 Forbidden error loading webtools.europa.eu/load.js in our production-ready environment under an official institutional domain.
Context:
Domain: https://mapas-gis-intra.carm.es (Regional Government of Murcia, Spain).
Infrastructure: The application is behind an Apache Reverse Proxy.
Error: The browser fails to load the script https://webtools.europa.eu/load.js in /validator/test-selection/index.html and the test-selection dont work.
Technical Details:
CloudFront Block: The 403 error is being returned by the Amazon CloudFront CDN used by the European Commission.
Referrer Policy: We have already configured our server to send a valid referrer using Header always set Referrer-Policy "strict-origin-when-cross-origin". Despite the request now including the correct Referer header, the access is still denied.
Restricted Environment: Our server is located in a high-security zone with restricted outbound internet access. While the client (browser) can reach the internet, the server itself cannot act as a proxy to fetch these resources.
Issue: We suspect our domain carm.es or the specific subdomain is not included in the Webtools/CloudFront whitelist.
Request:
Could you please provide guidance on how to request the whitelisting of our domain for webtools.europa.eu? Alternatively, is there a recommended way to run the validator in "offline" mode or with locally hosted assets to avoid dependencies on external JS loaders that are subject to domain-based blocking?
Thank you for your support.