stackoom
  简体   繁体   中英

CORS ORIGIN Error in React App that uses S3

 原文  2020-12-28 11:51:31       javascript/ reactjs/ amazon-web-services/ amazon-s3/ cors

Question

I've been working on a project that client should upload a file into a Cloud Storage with AWS. My app was written with ReactJS and I decided to upload the file directly from client side to Cloud Storage. I've built the app and deployed it to server. (Here is the link raymon-tech.ir ) But It returns

Access to XMLHttpRequest at 'https://kamal-archive.s3.ir-thr-at1.arvanstorage.com/aaa.js?uploads' from origin 'https://raymon-tech.ir' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: It does not have HTTP ok status.

error. If I disable CORS of my browser, it works fine.

UPDATE:

I use S3 Browser for config the Bucket Policy and CORS Configuration. Here's my configs:

CORS Configuration: 

<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
  <CORSRule>
    <AllowedMethod>GET</AllowedMethod>
    <AllowedMethod>PUT</AllowedMethod>
    <AllowedMethod>DELETE</AllowedMethod>
    <AllowedMethod>POST</AllowedMethod>
    <AllowedOrigin>*</AllowedOrigin>
    <AllowedHeader>*</AllowedHeader>
    <MaxAgeSeconds>3000</MaxAgeSeconds>
    <ExposeHeader>ETag</ExposeHeader>
    <ExposeHeader>Accept-Ranges</ExposeHeader>
    <ExposeHeader>Content-Encoding</ExposeHeader>
    <ExposeHeader>Content-Length</ExposeHeader>
    <ExposeHeader>Content-Range</ExposeHeader>
  </CORSRule>
</CORSConfiguration>

and Bucket Policy:

{
  "Version": "2008-10-17",
  "Id": "S3PolicyId1",
  "Statement": [
    {
      "Sid": "IPAllow",
      "Effect": "Allow",
      "Principal": {
        "AWS": "*"
      },
      "Action": "s3:GetBucketCORS",
      "Resource": "arn:aws:s3:::raysa/*"
    }
  ]
}

I changed them recently but nothing happend.

1 answers

solution1
 2  2020-12-28 11:58:00

If you need to upload files directly from your front-end app to S3 bucket, please make sure you add those to the bucket's CORS policy:

[
    {
        "AllowedHeaders": [
            "*"
        ],
        "AllowedMethods": [
            "GET",
            "POST",
            "PUT",
            "HEAD"
        ],
        "AllowedOrigins": [
            "*"
        ],
        "ExposeHeaders": [
            "ETag",
            "Accept-Ranges",
            "Content-Encoding",
            "Content-Length ",
            "Content-Range"
        ],
        "MaxAgeSeconds": 3000
    }
]

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Cross-origin requests AJAX requests to AWS S3 sometimes result in CORS error XMLHttpRequest and S3, CORS error Amazon S3 and Cross-Origin Resource Sharing (CORS) Axios CORS Vultr S3 "No 'Access-Control-Allow-Origin'" CORS error on AWS S3 bucket upload CORS error with S3 even after adding CORS configuration CORS and same-origin policies request problems in a react bundled app CORS error while trying to connect to S3 from a rails app using TextureLoader No 'Access-Control-Allow-Origin' header is present on the requested resource (AWS, API Gateway, S3, CORS) AWS S3 js SDK: Access to XMLHttpRequest at from origin has been blocked by CORS policy
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM