[英]header("Access-Control-Allow-Origin: "); dont work CORS policy, Redirect is not allowed for a preflight request
我已经尝试了很多事情,但我不断收到错误消息。 我尝试修复
CORS 策略已阻止从源“http://localhost:19006”获取“http://mysite.nl/login.php”的访问权限:对预检请求的响应未通过访问控制检查:重定向未通过允许预检请求。”
现在我读了这个文件:
https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS
很难理解,因为我是初学者
并添加到我的 php 文件中:
header("Access-Control-Allow-Origin: **http://mywebsite.nl/login.php**");
header('Access-Control-Allow-Methods: GET, POST, OPTIONS');
header("Access-Control-Allow-Headers: Content-Type, Authorization");
( "http://mywebsite.nl/login.php" , 我把网站名改成了 mywebsite)
<?php
include('db.php');
header("Access-Control-Allow-Origin: *");
header('Access-Control-Allow-Methods: GET, POST, OPTIONS');
header("Access-Control-Allow-Headers: Content-Type, Authorization");
$UserEmail = $decodedData['Email'];
$UserPW = ($decodedData['Password']); //password is hashed
$SQL = "SELECT * FROM newuser WHERE UserEmail = '$UserEmail'";
$exeSQL = mysqli_query($conn, $SQL);
$checkEmail = mysqli_num_rows($exeSQL);
if ($checkEmail != 0) {
$arrayu = mysqli_fetch_array($exeSQL);
if ($arrayu['UserPw'] != $UserPW) {
$Message = "pw WRONG";
} else {
$Message = "Success";
}
} else {
$Message = "No account yet";
}
$response[] = array("Message" => $Message);
echo json_encode($response);
这是我的 signin.js 文件。
import React, { Component } from 'react';
import { View, Pressable, Text, TextInput, TouchableOpacity, Button} from 'react-native';
import stylesin from '../../style';
import Feather from 'react-native-vector-icons/Feather';
export default class signin extends Component {
constructor(props) {
super(props);
this.state = {
email : '',
password : '',
check_textInputChange : false,
secureTextEntry : true,
};
}
InsertRecord=()=>{
var Email = this.state.email;
var Password = this.state.password;
if ((Email.length==0) || (Password.length==0)){
alert("Required Field Is Missing!!!");
}else{
var APIURL = **"http://mywebsite.nl/login.php"**;
var headers = {
'Accept' : 'application/json',
'Content-Type' : 'application/json'
};
var Data ={
Email: Email,
Password: Password
};
fetch(APIURL,{
method: 'POST',
headers: headers,
body: JSON.stringify(Data)
})
.then((Response)=>Response.json())
.then((Response)=>{
alert(Response[0].Message)
if (Response[0].Message == "Success") {
console.log("true")
this.props.navigation.navigate("HomeScreen");
}
console.log(Data);
})
.catch((error)=>{
console.error("ERROR FOUND" + error);
})
}
}
updateSecureTextEntry(){
this.setState({
...this.state,
secureTextEntry: !this.state.secureTextEntry
});
}
render() {
return (
<View style={stylesin.viewStyle}>
<View style={stylesin.action}>
<TextInput
placeholder="Enter Email"
placeholderTextColor="#ff0000"
style={stylesin.textInput}
onChangeText={email=>this.setState({email})}
/>
</View>
<View style={stylesin.action}>
<TextInput
placeholder="Enter Password"
placeholderTextColor="#ff0000"
style={stylesin.textInput}
secureTextEntry={this.state.secureTextEntry ? true : false}
onChangeText={password=>this.setState({password})}
/>
<TouchableOpacity
onPress={this.updateSecureTextEntry.bind(this)}>
{this.state.secureTextEntry ?
<Feather
name="eye-off"
color="grey"
size={20}
/>
:
<Feather
name="eye"
color="black"
size={20}
/>
}
</TouchableOpacity>
</View>
{/* Button */}
<View style={stylesin.loginButtonSection}>
<Pressable
style={stylesin.loginButton}
onPress={()=>{
this.InsertRecord()
}}
>
<Text style={stylesin.text}>Sign In</Text>
</Pressable>
</View>
<View style={stylesin.loginButtonSection}>
<Pressable
style={stylesin.loginButton}
onPress={()=>{
// this.InsertRecord()
}}
>
<Text style={stylesin.text}>Create new Account</Text>
</Pressable>
</View>
</View>
);
}
}
我阅读了很多解决方案,以至于我不再理解它了。
我遇到了同样的问题,我通过服务器上的两个功能和一个配置解决了这个问题。 停止痛苦并阅读这个小解决方案: php-cors
Php CORS CORS To basically understand what cors are, I suggest that we see them as a mechanism used by clients such as browsers or any other interface that makes http requests to validate if the source of the request is compatible with the destination. 这种兼容性是通过来自服务器或源的限制或策略来定义的。 如果您想了解更完整的技术定义,请参阅:HTTP 访问控制 (CORS)
以下解决方案是使用两个函数在 PHP 中启用 CORS:
注意:如果您使用的是 Nginx,您还需要允许 OPTIONS 方法或做一些小技巧来将 405 http 代码响应更改为 200:
“请求 header 字段 Access-Control-Allow-Origin 在预检响应中被 Access-Control-Allow-Headers 不允许”尽管 CORS 配置有效
[英]“Request header field Access-Control-Allow-Origin is not allowed by Access-Control-Allow-Headers in preflight response” despite valid CORS config
在执行预检请求时是否需要Access-Control-Allow-Origin CORS标头?
[英]Is the Access-Control-Allow-Origin CORS header required when doing a preflight request?
CORS 错误:对预检请求的响应 'Access-Control-Allow-Origin' header 包含多个值 '*、*'、
[英]CORS error: Response to preflight request The 'Access-Control-Allow-Origin' header contains multiple values '*, *',
CORS 策略错误:“Access-Control-Allow-Origin”标头包含多个值“*”、“*”,但只允许一个
[英]CORS policy error: The 'Access-Control-Allow-Origin' header contains multiple values '*, *', but only one is allowed
React+Express:预检响应中的 Access-Control-Allow-Headers 不允许请求标头字段 access-control-allow-origin
[英]React+Express: Request header field access-control-allow-origin is not allowed by Access-Control-Allow-Headers in preflight response
没有响应标头时允许CORS Access-Control-Allow-Origin
[英]CORS allowed when no response header Access-Control-Allow-Origin
如何解决“Redirect has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header'?
[英]How to solve 'Redirect has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header'?
CORS飞行前返回Access-Control-Allow-Origin,但响应挂起
[英]CORS preflight return Access-Control-Allow-Origin but response hangs on
CORS 策略已阻止从原点 '' 访问 XMLHttpRequest
[英]Access to XMLHttpRequest at '' from origin '' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.