如何在EmberJS应用程序中启用CORS?
[英]How to enable CORS in an EmberJS application?
问题描述
I have an EmberJS application that uses ember-data to access data via a REST API. 
我有一个EmberJS应用程序,它使用ember-data通过REST API访问数据。 The REST API is running on the same machine but on a different port (although this probably applies to REST API's that are served from another domain. REST API在同一台机器上运行,但在不同的端口上运行(尽管这可能适用于从另一个域提供的REST API。
When I go to the URL localhost:4200/items I get the following error in the Firefox console: 当我转到URL localhost:4200/items我在Firefox控制台中收到以下错误:
Content Security Policy: The page's settings blocked the loading of a resource at http://localhost:7654/api/items ("connect-src http://localhost:4200 ws://localhost:35729 ws://0.0.0.0:35729 http://0.0.0.0:4200 ").
I tried installing ember-cli-cors but nothing changed. 我尝试安装ember-cli-cors但没有改变。 I also tried the solution at http://discuss.emberjs.com/t/ember-data-and-cors/3690 , but that didn't work either. 我也在http://discuss.emberjs.com/t/ember-data-and-cors/3690尝试了解决方案,但这也没有用。 That discussion was from 2013, so that's not a huge surprise. 那次讨论是从2013年开始的,所以这不是一个巨大的惊喜。
The REST API is written in python using Flask and Flask-cors. REST API是使用Flask和Flask-cors在python中编写的。 Using the network tab I can see that the request is being sent, and the data being sent back, but the error is still there. 使用网络选项卡,我可以看到正在发送请求,并且数据被发回,但错误仍然存在。 The header Access-Control-Allow-Origin is set to http://localhost:4200 in the response, as expected. 正如预期的那样,标头Access-Control-Allow-Origin在响应中设置为http://localhost:4200 。
app/router.js 应用程序/ router.js
import Ember from 'ember';
import config from './config/environment';
var Router = Ember.Router.extend({
location: config.locationType
});
export default Router.map(function() {
this.route('items');
});
app/adapters/application.js 应用程序/适配器/ application.js中
import DS from 'ember-data';
export default DS.RESTAdapter.extend({
namespace: 'api',
host: 'http://localhost:7654',
});
app/routes/items.js 应用程序/路由/ items.js
import Ember from 'ember';
export default Ember.Route.extend({
model: function() {
return this.store.find('item');
}
});
app/models/item.js 应用程序/模型/ item.js
import DS from 'ember-data';
export default DS.Model.extend({
name: DS.attr(),
});
app/templates/items.hbs 应用程序/模板/ items.hbs
{{#each item in items}}
{{ item.name }}<br>
{{else}}
<p>No items</p>
{{/each}}
{{outlet}}
2 个解决方案
解决方案1
9 已采纳 2015-04-29 17:37:43
This is a CSP issue not CORS 这是CSP问题而不是CORS
Inside config/environment.js find the ENV.contentSecurityPolicy and add http://localhost:7654 to your 'connect-src' key 在config / environment.js中找到ENV.contentSecurityPolicy并将http:// localhost:7654添加到'connect-src'键
eg 例如
ENV.contentSecurityPolicy = {
// ... other stuff here
'connect-src': "'self' http://localhost:7654"
}
You will probably need a different setting for your production environment as well. 您可能还需要为生产环境设置不同的设置。
解决方案2
0 2018-08-21 05:28:15
For testing environment you can use proxy. 对于测试环境,您可以使用代理。
ember s -proxy http://localhost:7654
So all back-end request goes to your server which is running on port 7654. 所以所有后端请求都会转到运行在端口7654上的服务器。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.