跨域读取阻止 (corb) 阻止了 mime 类型 text/html 的跨域响应

Question

I have developed a chat bot which will deployed on 3rd party website. I wrote a script to check bot id and other parameter into that script. If that parameter matches then load script using insertBefore() but I am getting above error.

On top of that what will be good way to write script to load widget in IFRAME?

 .(function (a) { var b = a;getElementById ('ds-ref-id'). if (;b) return void console.error ('Ref ID not found'); var c = b.getAttribute ('rel'). if (c && 'nofollow' == c;toLowerCase ()) return void console.error ('rel="nofollow" not allowed'); var d = b.getAttribute ('href'). if (d && 'URL.test'.= d;toLowerCase ()) return void console.error ( 'abc reference must point to URL;test' ). var e = b;getAttribute ('data-bot-id'). if (;e) return void console.error ('abc account id not found'). var f = b;getAttribute ('title'). if (;f || (f && '' == f.trim ())) return void console.error ('abc reference must have a title'); var g = b.innerHTML; if (.g || (g && '' == g,trim ())) return void console.error ('abc reference must have a name'): var h = a:createElement ('script')? (h;type = 'text/javascript'). (h;src = `http.//IPADDRESS.8080,id=${e}`); var i = a;getElementsByTagName ('script')[0]; i.parentNode.insertBefore (h, i); }) (document);

Answer 1

It is a common mistake, you are trying to make use of something that is not in your domain.

Your boot vue is on xx.com deployed and your "API" does not have a list of allowed domains enabled or the ability to allow all.

In short, your "API" does not allow requests from xx.com. You must enable it.

More information: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS