跨源请求在asp.net核心信号R中被阻止?
[英]Cross origin request blocked in asp.net core signalR?
问题描述
I am working on asp.net core signalR. 
我正在研究asp.net核心signalR。 I want to make cross domain request.I have a javascript client,when i make hubConnection to cross domain signalR hub, then the below error shows, Access to XMLHttpRequest at ' https://localhost:44373/chatHub/negotiate?token=12 ' from origin ' https://localhost:44381 ' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. 我想进行跨域请求。我有一个JavaScript客户端,当我使hubConnection跨域signalR集线器时,然后出现以下错误,访问XMLHttpRequest的位置为https:// localhost:44373 / chatHub / negotiate?token = 12 'from origin'https:// localhost:44381 '已被CORS策略阻止:对预检请求的响应未通过访问控制检查:请求的资源上没有'Access-Control-Allow-Origin'标头。
Javascript client code Javascript客户端代码
var connection = new signalR.HubConnectionBuilder().withUrl("https://localhost:44373/chatHub?token="+12).build();
Startup class in cross domain signalr project 跨域Signalr项目中的启动类
public void ConfigureServices(IServiceCollection services)
{
services.Configure<CookiePolicyOptions>(options =>
{
// This lambda determines whether user consent for non-essential cookies is needed for a given request.
options.CheckConsentNeeded = context => true;
options.MinimumSameSitePolicy = SameSiteMode.None;
});
services.AddCors(options => options.AddPolicy("CorsPolicy", builder =>
{
builder
.AllowAnyMethod()
.AllowAnyHeader()
.WithOrigins("*")
.AllowCredentials();
}));
services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_2);
services.AddCors();
services.AddSignalR();
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IHostingEnvironment env)
{
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
else
{
app.UseExceptionHandler("/Error");
// The default HSTS value is 30 days. You may want to change this for production scenarios, see https://aka.ms/aspnetcore-hsts.
app.UseHsts();
}
//app.UseCors(builder =>
//{
// builder.WithOrigins("*")
// .AllowAnyHeader()
// .AllowAnyMethod()
// //.WithMethods("GET", "POST")
// .AllowCredentials();
//});
// ... other middleware ...
// app.UseCors("CorsPolicy");
app.UseSignalR(routes =>
{
routes.MapHub<ChatHub>("/chatHub");
});
app.UseHttpsRedirection();
app.UseStaticFiles();
app.UseCookiePolicy();
app.UseMvc();
}
1 个解决方案
解决方案1
0 2019-03-13 10:33:25
In your startup class un-comment the following line // app.UseCors("CorsPolicy"); 在启动类中,取消注释以下行// app.UseCors("CorsPolicy");
You've built the policy in your ConfigureServices() method, now you need to tell the app to use that policy in the Configure() method 您已经在ConfigureServices()方法中构建了策略,现在您需要告诉应用程序在Configure()方法中使用该策略。
EDIT: 编辑:
In Response to your comment, if you want to allow any origin in your CORS policy, replace .WithOrigins("*") with .AllowAnyOrigin() instead. 作为对您的评论的回应,如果您想在CORS策略中允许任何来源,请将.WithOrigins("*")替换为.AllowAnyOrigin() 。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.