堆栈内存溢出
  简体   繁体   English

asp.net核心2.1跨组织策略。 添加为CORS时,仅单个网址有效

[英]asp.net core 2.1 cross orgin policy. Only single url working when added as CORS

 原文  2019-03-27 09:39:19       c#/ .net-core/ cors/ asp.net-core-2.1

问题描述

I am trying to add multiple rul which should be whitelisted for CORS. 我试图添加多个RUL,应该将其列入CORS的白名单。

Problem is only single url work. 问题仅在于单个url工作。 My code is as following 我的代码如下 

public class StartupShutdownHandler
{
    private static readonly log4net.ILog Logger = log4net.LogManager.GetLogger(System.Reflection.MethodBase.GetCurrentMethod().DeclaringType);
    private const string MyAllowSpecificOrigins = "_myAllowSpecificOrigins";
    public StartupShutdownHandler(IConfiguration configuration)
    {
        Configuration = configuration;
    }

    public IConfiguration Configuration { get; }
    // This method gets called by the runtime. Use this method to add services to the container.
    public void ConfigureServices(IServiceCollection services)
    {
        services.AddSingleton<IHttpContextAccessor, HttpContextAccessor>();
        services.AddMvc(options => { options.RespectBrowserAcceptHeader = true; }).AddXmlSerializerFormatters().AddXmlDataContractSerializerFormatters();

        CorsRelatedPolicyAddition(services);
    }
    private void CorsRelatedPolicyAddition(IServiceCollection services)
    {
/*        var lstofCors = ConfigurationHandler.GetSection<List<string>>(StringConstants.AppSettingsKeys.CORSWhitelistedURL);
*/
var lstofCors = new  List<string> {"url1", "url2"}

        if (lstofCors != null && lstofCors.Count > 0 && lstofCors.Any(h => !string.IsNullOrWhiteSpace(h)))
        {
            services.AddCors(options =>
            {
                //https://stackoverflow.com/questions/43985620/asp-net-core-use-multiple-cors-policies
                foreach (var entry in lstofCors.FindAll(h => !string.IsNullOrWhiteSpace(h)))
                {
                    options.AddPolicy(MyAllowSpecificOrigins, builder => { builder.WithOrigins(entry); });
                }
            });
        }            
    }

    // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
    public void Configure(IApplicationBuilder app, IHostingEnvironment env, IApplicationLifetime applicationLifetime)
    {
        if (env.IsDevelopment())
        {
            app.UseDeveloperExceptionPage();
        }

        app.UseCors(MyAllowSpecificOrigins);

        // CheckAndEnableDetailLogs(app);
        app.UseMvc();                    
    }       
}

1 个解决方案

解决方案1
 1 已采纳  2019-03-27 11:04:25

You are overriding the options for every entry in your array. 您将覆盖阵列中每个条目的选项。

Just add the entries as an array of strings. 只需将条目添加为字符串数组即可。 

    var lstofCors = new  string[] {"url1", "url2"};
    services.AddCors(options =>
        {
           options.AddPolicy(MyAllowSpecificOrigins, builder => { builder.WithOrigins(lstofCors.ToArray()).AllowAnyMethod(); });
        });
}

Edit: I have added AllowAnyMethod() as looks like only get method is working 编辑:我添加了AllowAnyMethod(),就像只有get方法正在工作

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 为什么此CORS政策无法使用ASP.NET Core - Why is this CORS policy not working ASP.NET Core ASP.NET 内核 Cors 策略 - ASP.NET core Cors policy FormDataCollection在ASP.NET Core 2.1中不起作用? - FormDataCollection not working in ASP.NET Core 2.1? Angular / ASP.NET Core 2.1 CORS 问题 - Angular / ASP.NET Core 2.1 CORS issue ReactJS/ASP.Net Core 2.1 版本 CORS 错误 - ReactJS/ASP.Net Core 2.1 Version CORS Error ASP.Net Core 2.1中的自定义授权筛选器与策略 - Custom Authorization Filter vs Policy in ASP.Net Core 2.1 记录Polly等待和重试策略ASP.NET CORE 2.1 - Logging Polly wait and retry policy ASP.NET CORE 2.1 Asp.Net Core API CORS 策略错误仅在文件上传 - Asp.Net Core API CORS policy error only in file upload ASP.NET CORE 2.1跨线程模拟 - ASP.NET CORE 2.1 cross-thread impersonation ASP.NET 内核 Cors 已启用但不工作 - ASP.NET Core Cors is enabled but not working
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM