[英]API request from Angular App to Django REST API - blocked by CORS
我有一个有效的 Angular 应用程序,它从 Django REST Z8A5DA52ED126447D35AZE70A8A8A5 获取数据当我向某些端点发出请求时,api 请求成功,但由于被其他端点上blocked by CORS而失败。
我在 django 应用程序中的 CORS 配置:
白名单:
CORS_ORIGIN_WHITELIST = (
'http://localhost:4200', # my angular app
'http://localhost:8080',
)
中间件:
MIDDLEWARE = [
...
'corsheaders.middleware.CorsMiddleware',
]
已安装的应用程序:
INSTALLED_APPS = [
...
'corsheaders',
]
当我在我的 angular 应用程序中发出这个获取请求时,它成功了,我得到了我期望的结果
Angular 请求:
public getProviders(searchParams: ProviderSearchParams): Observable<ProviderSearchResult> {
const p = this.serializeParams(searchParams, new HttpParams());
return this.http.get<any>(`${this.base_url}/providers/`, {params: p})
.pipe(map(this.deserializeAs(ProviderSearchResult)));
}
Django 端点
# urls
path('', views.ProviderList.as_view(), name="api_provider_list"),
# views
class ProviderList(generics.ListAPIView):
"""
View all providers.
"""
queryset = Provider.objects.filter(is_accepted=True)
filter_backends = [DjangoFilterBackend,
filters.SearchFilter, filters.OrderingFilter]
filterset_fields = ['name', 'branches__city', 'branches__area']
search_fields = ['name', 'branches__name',
'branches__city', 'branches__area']
ordering_fields = ['name', 'created_date']
pagination_class = PageNumberPagination
def get_serializer_class(self):
if self.request.user.is_staff:
return AdminProviderSerializer
return PublicProviderSerializer
但是,当我向generics.RetrieveUpdateDestroyAPIView发出请求时,它似乎因错误blocked by CORS失败。 这是一个例子:
Angular 请求:
public getProviderBySlug = (slug: string): Observable<Provider> =>
this.http.get<any>(`${this.base_url}/providers/${slug}`)
.pipe(map(this.deserializeAs(Provider)))
Django 端点
# urls
path('<slug:slug>/', views.ProviderDetail.as_view(), name="api_provider_details"),
# views
class ProviderDetail(generics.RetrieveAPIView):
"""
Returns a single provider
"""
queryset = Provider.objects.all()
serializer_class = PublicProviderSerializer
def get_object(self):
return Provider.objects.get(slug=self.kwargs.get('slug', None))
似乎对generics.RetrieveUpdateDestroyAPIView和generics.RetrieveAPIView的请求导致此 CORS 错误
错误
Access to XMLHttpRequest at 'http://localhost:8000/api/providers/icc' from origin 'http://localhost:4200' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
请加/
像那样
this.http.get<any>(`${this.base_url}/providers/${slug}/`) <---- '/' is there
CORS 策略阻止的 POST API 响应 - React 和 Django Rest Framework
[英]POST API response blocked by CORS policy - React and Django Rest Framwork
CORS在dockerized Django REST + Angular项目中被阻止
[英]CORS blocked in dockerized Django REST + Angular project
我的请求是跨源请求吗?(heroku上带有CORS的Django rest api不会阻止我的请求)
[英]Is my request a cross origin request?(Django rest api on heroku with CORS not blocking my request)
如何从Android App向Django REST API发送带有POST请求的令牌?
[英]How to send Token with POST request to Django REST api from Android App?
CORS 策略已阻止从来源“http://localhost:3000”访问位于“http://localhost:8000/api/posts/”的 XMLHttpRequest。 Django 和反应
[英]Access to XMLHttpRequest at 'http://localhost:8000/api/posts/' from origin 'http://localhost:3000' has been blocked by CORS policy. Django and React
如何从Django rest API中的ModelViewSet类获取请求的用户名?
[英]How to get username of request from ModelViewSet class in Django rest API?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.