CORS GET在Firefox中返回一個空的響應主體
[英]CORS GET returns an empty response body in Firefox
問題描述
從RESTful Backbone應用程序,我正在執行從mydomain.com到myExtdomain.com CORS請求。
我並建立CORS我的myExtdomain.com服務器,我響應OPTIONS動詞(任何URL)與:
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type
Status Code: HTTP/1.1 204 No Content
以及myExtdomain.com上的API調用:
Access-Control-Allow-Origin: *
Content-Type: application/json
Status Code: HTTP/1.1 200 OK
我甚至拼命想要在myExtdomain.com上myExtdomain.com我所有的 HTTP請求:
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type
Content-Type: application/json
Status Code: HTTP/1.1 200 OK
問題
- 在Chrome中一切正常
- 在Firefox中,我的
PUT請求工作,但我的GET請求“有點失敗”......
“有點失敗”的定義
- 返回的HTTP狀態代碼為
200 OK - 但響應是空的(無響應體/大小0 KB)..它應該是一些
JSON。 - 但是,出於某種原因,每100次一次,一次
GET請求就起作用
無聊的細節又名“標題”
回應OPTIONS動詞:
REQUEST HEADERS
-----------------
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:25.0) Gecko/20100101 Firefox/25.0
Origin: http://mydomain.com
Host: www.myExtdomain.com
Connection: keep-alive
Access-Control-Request-Method: PUT
Access-Control-Request-Headers: content-type
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
RESPONSE HEADERS
-----------------
X-Powered-By: ASP.NET
Server: Microsoft-IIS/7.0
Date: Fri, 15 Nov 2013 07:01:57 GMT
Content-Type: text/html
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Content-Type
PUT請求:
REQUEST HEADERS
----------------
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:25.0) Gecko/20100101 Firefox/25.0
Referer: http://mydomain.com/account
Origin: http://mydomain.com
Host: www.myExtdomain.com
Content-Type: application/json; charset=UTF-8
Content-Length: 36
Connection: keep-alive
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Accept: application/json, text/javascript, */*; q=0.01
RESPONSE HEADERS
----------------
X-Powered-By: ASP.NET
Server: Microsoft-IIS/7.0
Date: Fri, 15 Nov 2013 07:01:57 GMT
Content-Type: application/json
Content-Length: 0
Access-Control-Allow-Origin: *
BODY RESPONSE
--------------
_Some_Json_Here_
神奇的 GET請求:
REQUEST HEADERS
----------------
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:25.0) Gecko/20100101 Firefox/25.0
Referer: http://mydomain.com/somepage
Origin: http://mydomain.com
Host: www.myExtdomain.com
Connection: keep-alive
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Accept: application/json, text/javascript, */*; q=0.01
RESPONSE HEADERS
----------------
Server: Microsoft-IIS/7.0
Last-Modified: Fri, 15 Nov 2013 06:58:18 GMT
Date: Fri, 15 Nov 2013 07:01:57 GMT
Content-Type: application/json
Content-Length: 4041
Connection: keep-alive
RESPONSE BODY
--------------
Empty (0KB), it's supposed to be some JSON, that *SOMETIMES* (1/100) I get.. Magic.
結束思想
2 個解決方案
解決方案1
16 已采納 2013-11-16 18:51:27
在我的所有API調用中添加Cache-Control: no-cache標頭響應(在myExtdomain.com )解決了我的問題:
Access-Control-Allow-Origin: *
Content-Type: application/json
Cache-Control: no-cache
出於某種原因,Firefox正在緩存我的API調用,並且在緩存時,FF無法再次解析JSON。在空響應體中結束或者出現任何錯誤。
現在我記得這不是我第一次用Firefox強制no-cache ..
同樣,Chrome一切正常,Chrome不需要Cache-Control: no-cache標頭。
如果有人知道FF和Chrome之間的這種區別(默認設置??),我會好奇不再關注它。
希望這會節省一些時間。
解決方案2
0 2017-02-22 14:08:01
對我來說,解決方案是在服務器端的響應頭中添加Access-Control-Allow-Credentials: true :這是設置request.withCredentials = true;的對稱request.withCredentials = true; 對於客戶端的XMLHttpRequest對象。
我可以用 Postman 得到正確的響應,但是獲取響應的主體是空的
[英]I can get correct response with Postman but body of the fetch response is empty
Firefox即使服務器返回了適當的響應頭,也不允許CORS請求
[英]Firefox Does not allow CORS request even when the server returns the appropriate response header
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.