堆栈内存溢出
  简体   繁体   English

CORS 策略:请求 header 字段 access-control-allow-origin 在预检响应中被 Access-Control-Allow-Headers 不允许

[英]CORS policy: Request header field access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response

 原文  2019-11-01 13:37:46       amazon-web-services/ aws-lambda/ aws-api-gateway/ aws-serverless

问题描述

I use lambda as backend for AWS API Gateway with lambda proxy integration.我使用 lambda 作为 AWS API 网关与 lambda 代理集成的后端。

I have CORS enabled but is not working.我启用了 CORS 但无法正常工作。

I receive this error:我收到此错误:

Access to XMLHttpRequest at ' ' from origin ' ' has been blocked by CORS policy: Request header field access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response. CORS 策略已阻止从原点“ ”访问“”处的 XMLHttpRequest:请求 header 字段 access-control-allow-origin 不允许在 preflight 中访问响应控制-允许-来源

in serverless.yml:在 serverless.yml 中:

resources:
  Resources:
GatewayResponseDefault4XX:
              Type: 'AWS::ApiGateway::GatewayResponse'
              Properties:
                ResponseParameters:
           gatewayresponse.header.Access-Control-Allow-Origin: "'*'"
           gatewayresponse.header.Access-Control-Allow-Headers: "'*'"
           gatewayresponse.header.Access-Control-Allow-Methods: "'GET,PUT,POST,DELETE,PATCH,OPTIONS'"
           gatewayresponse.header.Access-Control-Allow-Credentials: true
                ResponseType: DEFAULT_4XX
                RestApiId:
                  Ref: 'ApiGatewayRestApi'

1 个解决方案

解决方案1
 0  2019-11-04 18:15:56

Can you please validate if your API Gateway configuration looks something like this on the console?您能否验证您的 API 网关配置在控制台上是否看起来像这样? You should see the Options endpoint if everything is setup correctly.如果一切设置正确,您应该会看到 Options 端点。

API Gateway Configuration API 网关配置

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Access-Control-Allow-Headers 在预检响应中不允许访问控制允许来源 - Access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response AWS API Gateway返回飞行前响应中Access-Control-Allow-Headers不允许的access-control-allow-origin - AWS API Gateway returns access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response 通过 SAM 创建 API 时,预检响应中的 Access-Control-Allow-Headers 不允许请求 header 字段内容类型 - Request header field content-type is not allowed by Access-Control-Allow-Headers in preflight response when creating API through SAM AWS CORS 策略:请求的资源上不存在“Access-Control-Allow-Origin”标头。 标题存在 - AWS CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. The headers are present 获取错误:飞行前响应中的Access-Control-Allow-Header - Getting error : Access-Control-Allow-Headers in preflight response 预检响应中的无服务器 AWS Access-Control-Allow-Headers - Serverless AWS Access-Control-Allow-Headers in preflight response "Angular 7:对预检请求的响应未通过访问控制检查:请求中不存在“Access-Control-Allow-Origin”标头" - Angular 7 : Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested AWS-对预检请求的响应未通过访问控制检查:所请求的资源上不存在“ Access-Control-Allow-Origin”标头 - AWS - Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource 对预检请求的响应未通过访问控制检查:请求的资源中不存在“Access-control-Allow-Origin”header - response to preflight request doesn't pass access control check: No 'Access-control-Allow-Origin' header is present in the requested resource CORS 政策:无“访问控制允许来源”-AWS 和 Vercel - CORS policy: No 'Access-Control-Allow-Origin' - AWS and Vercel
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM