AngularJS和Node.js CORS不适用于PUT / POST

Question

I have a CORS problem with my app.

My stack is Node.js with Express 4 and AngularJS

I already have tried a few things but I keep getting for all POST/PUT requests:

No 'Access-Control-Allow-Origin' header is present on the requested resource.

In the server side I have enabled CORS using the npm cors module

var cors = require('cors');
var corsOptions = {
  origin: [
    'http://www.localhost:5555',
    'http://www.somedomain.com'
  ],
  methods: ['GET', 'HEAD', 'PUT', 'PATCH', 'POST', 'DELETE', 'OPTIONS'],
  allowedHeaders: [
    'Content-Type',
    'Content-Length',
    'Content-Range',
    'Content-Disposition',
    'Content-Description',
    'Access-Control-Allow-Origin',
    'Access-Control-Allow-Headers',
    'Authorization',
    'Origin',
    'X-Requested-With',
    'X-AUTH-TOKEN'
  ],
  credentials: true
};
app.use(cors(corsOptions));

In the AngularJS part I am using this:

// App Config
App.config(['$httpProvider',
  function ($httpProvider) {
    $httpProvider.defaults.withCredentials = true;
  }
]);

// Request in the Angular service
var deferred = $q.defer();
var host = 'http://www.localhost:5555';
var id = 'some-id';
var data = {};

$http.put(host + '/roles/' + id, data).
  success(function (data) {
    deferred.resolve(data);
  }).
  error(function (err) {
    deferred.reject(err);
  });

return deferred.promise;

The GET requests work fine. The PUT/POST requests keep returning the same error above. The preflight OPTIONS is successful however.

Thanks

Answer 1

This works for me with CORs in an Express 4 server

app.use(function(req, res, next) {
  res.header("Access-Control-Allow-Origin", "*");
  res.header("Access-Control-Allow-Methods", "OPTIONS, POST, GET, PUT, DELETE");
  res.header("Access-Control-Allow-Headers", YOUR HEADERS HERE);
  res.header('Access-Control-Allow-Credentials', true);
  if ('OPTIONS' == req.method) {
      return res.sendStatus(200);
  } else {
      next();
  }
});