stackoom
  简体   繁体   中英

How can I set the Access-Control-Allow-Origin header?

 原文  2021-02-23 16:03:29       php/ xmlhttprequest

Question

I know this is a really simple question, but after searching a lot I can't find how to set headers.

Here's what I want to do:

Whenever the user goes to https://www.google.com/ , then an extension should log that into a logfile. I currently am developing the extension on my own device, and using http://localhost/log.php to get POST requests and log information to files based on the information POSTed. My manifest is working and I have tested it. Below is my track.js :

function log(info){
    var xhttp=new XMLHttpRequest();
    xhttp.onreadystatechange=function(){
        if(this.readyState===4&&this.status===200){
            console.log(this.responseText);
        }
    }
    xhttp.open("POST","http://localhost/log.php",true);

    // xhttp.setRequestHeader("Access-Control-Allow-Origin","*");
    // above: my first attempt to set a header (did not work)

    xhttp.send("log_info="+info);
}
if(location.href==="https://www.google.com/")log("We're at google.com!");

This is my log.php :

<?php
header("Access-Control-Allow-Origin: *");
if(isset($_POST["log_item"]))
    file_put_contents("log.txt", $_POST["log_item"]."\n",FILE_APPEND);

And log.txt is an empty file. I know CORS is the problem because when I open the console on https://www.google.com/ , I see this:

Access to XMLHttpRequest at 'http://localhost/log.php' from origin 'https://www.google.com' has been blocked by CORS policy: Request header field access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response.

POST http://localhost/log.php net::ERR_FAILED

This seems really simple to me but I can't find how to set headers. Thanks for any help.

1 answers

solution1
 0 ACCPTED  2021-02-23 16:13:52

You should add "Access-Control-Allow-Origin: *" on your webserver configuration (Nginx or Apache or...) that you are currently using on your localhost.

You can not bypass CORS from your code or your request at all.

For nginx (/etc/nginx/nginx.conf):

https://enable-cors.org/server_nginx.html

Apache:

https://enable-cors.org/server_apache.html

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question yii2: how to set Access-Control-Allow-Origin header How do I solve: The 'Access-Control-Allow-Origin' header has a value that is not equal to the supplied origin Access-Control-Allow-Origin header Missing No 'Access-Control-Allow-Origin' header - Laravel No 'Access-Control-Allow-Origin' header is present How to add 'Access-Control-Allow-Origin' header? How to set Access-Control-Allow-Origin HTTP header for images on my server? Can someone explain how header('Access-Control-Allow-Origin: *') works? how to bypass Access-Control-Allow-Origin? Allow No 'Access-Control-Allow-Origin' header in Laravel
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM