堆栈内存溢出
  简体   繁体   English

如何在 ASP.net Core WebAPI 中使用默认和自己的策略启用 CORS

[英]How to enable CORS in ASP.net Core WebAPI with deafult and own policy

 原文  2020-07-10 11:38:50       c#/ asp.net-core

问题描述

I would like to enable by EnableCors attribute my own "MyPolicy" for one controller and for the others I would like to use default policy.我想通过 EnableCors 属性为一个 controller 启用我自己的“MyPolicy”,而其他我想使用默认策略。 So in my configure services method I write所以在我的配置服务方法中我写

services.AddCors(options =>
{
    options.AddPolicy(name: "MyPolicy",
        builder => builder
            .WithOrigins("http://localhost:3000")
            .AllowCredentials()
            .AllowAnyMethod()
            .AllowAnyHeader());

    options.AddDefaultPolicy(
            builder => builder
            .AllowAnyOrigin()
            .AllowAnyMethod()
            .AllowAnyHeader());
});

and than in Configure method I just call:而不是在配置方法中我只是调用:

app.UseCors();

it does not work as I expected.它不像我预期的那样工作。 It's only define DefaultPolicy and the only way to use "MyPolicy" is to use them as:它只定义 DefaultPolicy,使用“MyPolicy”的唯一方法是将它们用作:

app.UseCors("MyPolicy");

But in this case default policy does not work.但在这种情况下,默认策略不起作用。 Is it possible to define own policies by AddPolicy and default policy by AddDefaultPolicy.是否可以通过 AddPolicy 定义自己的策略,并通过 AddDefaultPolicy 定义默认策略。

1 个解决方案

解决方案1
 1 已采纳  2020-07-16 08:59:33

If you would like to use many own policies and default policy the solution is to define in configureservices:如果您想使用许多自己的策略和默认策略,解决方案是在 configureservices 中定义:

public void ConfigureServices(IServiceCollection services)
{
    services.AddCors(options =>
    {
        options.AddDefaultPolicy(
            builder =>
            {
               
                builder.WithOrigins("http://example.com",
                                    "http://www.contoso.com");
            });

        options.AddPolicy("AnotherPolicy",
            builder =>
            {
                builder.WithOrigins("http://www.contoso.com")
                                    .AllowAnyHeader()
                                    .AllowAnyMethod();
            });

    });

    services.AddMvc().SetCompatibilityVersion(CompatibilityVersion.Version_2_2);
}

and use policies through EnableCorsAttribute like this:并通过 EnableCorsAttribute 使用策略,如下所示:

  // GET api/values
    [EnableCors("AnotherPolicy")]
    [HttpGet]
    public ActionResult<IEnumerable<string>> Get()
    {
        return new string[] { "green widget", "red widget" };
    }

. . In this case do not call UseCors method of app IApplicationBuilder object in configure method startup class.在这种情况下,不要在配置方法启动 class 中调用应用程序 IApplicationBuilder object 的 UseCors 方法。

public void Configure(IApplicationBuilder app, IHostingEnvironment env)
{
    if (env.IsDevelopment())
    {
        app.UseDeveloperExceptionPage();
    }
    else
    {
        app.UseHsts();
    }
    //Do not use this method:
    //app.UseCors();

    app.UseHttpsRedirection();
    app.UseMvc();
}

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何在 ASP.net Core WebAPI 中启用 CORS - How to enable CORS in ASP.net Core WebAPI 如何在 Asp.Net Core 3.0 WebAPI 中启用 CORS - How to enable CORS in Asp.Net Core 3.0 WebAPI 如何在 ASP.NET Core 中启用 CORS - How to enable CORS in ASP.NET Core ASP.NET 内核 Cors 策略 - ASP.NET core Cors policy 仅当在 IIS 中发布时,在 ASP.net Core 3.1 WebAPI 中启用 CORS 时出错 - Error on Enable CORS in ASP.net Core 3.1 WebAPI in only when published in IIS 如何在ASP.NET Web API核心中全局启用CORS - How to enable CORS globally in ASP.NET web API core Asp.net WebAPI启用Cors到特定的SSL / https来源 - Asp.net WebAPI enable Cors to specific SSL/https origin Asp.Net WebApi2 启用 CORS 不适用于 AspNet.WebApi.Cors 5.2.3 - Asp.Net WebApi2 Enable CORS not working with AspNet.WebApi.Cors 5.2.3 Blazor 无法连接到 ASP.NET Core WebApi (CORS) - Blazor cannot connect to ASP.NET Core WebApi (CORS) 用户或管理员的ASP.Net Core WebAPI授权策略 - ASP.Net Core WebAPI Authorization Policy for User or Admin
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM