[英]How to enable CORS globally in my ASP.NET core WebApi project
我正在嘗試將我的Web Api2遷移到ASP.NET核心web api項目。 在我的項目中,我們使用的是EnableCors功能。
我在Microsoft網站上找到了這個文檔,我將其用作參考 - https://docs.asp.net/en/latest/security/cors.html
正如“在MVC中啟用CORS”一節中所述,我試圖在這樣的ConfigureServices menthod中全局啟用cors -
services.Configure<MvcOptions>(options =>
{
options.Filters.Add(new CorsAuthorizationFilterFactory("AllowSpecificOrigin"));
});
但是,我收到了這個我無法理解的錯誤 -
以下方法或屬性之間的調用不明確:'Microsoft.Extensions.DependencyInjection.OptionsServiceCollectionExtensions.Configure(Microsoft.Extensions.DependencyInjection.IServiceCollection,System.Action)'和'Microsoft.Extensions.DependencyInjection.OptionsServiceCollectionExtensions.Configure(Microsoft.Extensions) .DependencyInjection.IServiceCollection,System.Action)'
在這里參考錯誤截圖 - 錯誤scrrenshot
有誰能告訴我如何在我的ASP.NET核心WebApi項目中全局啟用CORS?
Project.json:
{
"userSecretsId": "aspnet5-MVC6",
"version": "1.4.0-*",
"buildOptions": {
"emitEntryPoint": true,
"preserveCompilationContext": true
},
"dependencies": {
"Microsoft.ApplicationInsights.AspNetCore": "1.0.0",
"Microsoft.AspNetCore.Authentication.Cookies": "1.0.0",
"Microsoft.AspNetCore.Diagnostics": "1.0.0",
"Microsoft.AspNetCore.Diagnostics.EntityFrameworkCore": "1.0.0",
"Microsoft.AspNetCore.Identity": "1.0.0",
"Microsoft.AspNetCore.Identity.EntityFrameworkCore": "1.0.0",
"Microsoft.AspNetCore.Mvc": "1.0.0",
"Microsoft.AspNetCore.Mvc.TagHelpers": "1.0.0",
"Microsoft.AspNet.Cors": "6.0.0-rc1-final",
"Microsoft.AspNetCore.Server.IISIntegration": "1.0.0",
"Microsoft.AspNetCore.Server.Kestrel": "1.0.0",
"Microsoft.AspNetCore.StaticFiles": "1.0.0",
"Microsoft.EntityFrameworkCore": "1.0.0",
"Microsoft.EntityFrameworkCore.SqlServer": "1.0.0",
"Microsoft.Extensions.Configuration.CommandLine": "1.0.0",
"Microsoft.Extensions.Configuration.FileExtensions": "1.0.0",
"Microsoft.Extensions.Configuration.Json": "1.0.0",
"Microsoft.Extensions.Configuration.UserSecrets": "1.0.0",
"Microsoft.Extensions.Logging": "1.0.0",
"Microsoft.Extensions.Logging.Console": "1.0.0",
"Microsoft.Extensions.Logging.Debug": "1.0.0",
"Microsoft.VisualStudio.Web.BrowserLink.Loader": "14.0.0"
},
"tools": {
"BundlerMinifier.Core": "2.0.238",
"Microsoft.AspNetCore.Razor.Tools": "1.0.0-preview2-final",
"Microsoft.AspNetCore.Server.IISIntegration.Tools": "1.0.0-preview2-final",
"Microsoft.Extensions.SecretManager.Tools": "1.0.0-preview2-final"
},
"frameworks": {
"netcoreapp1.0": {
"imports": [
"dnxcore50"
],
"dependencies": {
"Microsoft.NETCore.App": {
"type": "platform",
"version": "1.0.0"
}
}
},
"net461": {
"dependencies": {
"Microsoft.VisualStudio.Web.CodeGenerators.Mvc": "1.0.0-preview2-final"
}
}
},
"publishOptions": {
"exclude": [
"**.user",
"**.vspscc",
"wwwroot",
"node_modules"
]
},
"scripts": {
"prepublish": [ "npm install", "bower install", "gulp clean", "gulp min" ]
}
}
你混淆了依賴關系。
“Microsoft.AspNet.Cors”:“6.0.0-rc1-final”
是一個非常舊的版本,導致您的解決方案加載了兩個具有相同名稱空間和類型的不同程序集,編譯器不知道使用哪個程序集。
將其更改為
“Microsoft.AspNetCore.Cors”:“1.0.0”
所有Microsoft.AspNet.*
包都非常陳舊,不應使用。 他們都用RC2重命名為Microsoft.AspNetCore.*
要為應用程序設置CORS,請將Microsoft.AspNetCore.Cors包添加到項目中。 在Startup.cs中添加CORS服務:
public void ConfigureServices(IServiceCollection services)
{
services.AddCors();
}
要為整個應用程序啟用CORS,請使用UseCors
擴展方法將CORS中間件添加到請求管道。 請注意,CORS中間件必須位於應用程序中要支持跨源請求的任何已定義端點之前(例如,在調用UseMvc
之前)。
使用CorsPolicyBuilder類添加CORS中間件時,可以指定跨源策略。 使用lambda調用UseCors:
public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
{
loggerFactory.AddConsole();
if (env.IsDevelopment())
{
app.UseDeveloperExceptionPage();
}
// Shows UseCors with CorsPolicyBuilder.
app.UseCors(builder =>
builder.WithOrigins("http://example.com").AllowAnyMethod().AllowAnyHeader());
app.Run(async (context) =>
{
await context.Response.WriteAsync("Hello World!");
});
}
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.