被 CORS 策略阻止:“Access-Control-Allow-Origin”header 包含多個值
[英]Blocked by CORS policy: The 'Access-Control-Allow-Origin' header contains multiple values
問題描述
我什么時候嘗試使用 JWT 連接后端 api 它顯示了這個問題?
Laravel代碼
public function handle($request, Closure $next)
{
header('Access-Control-Allow-Origin: *');
header('Access-Control-Allow-Headers: Content-type, X-Auth-Token, Authorization, Origin');
return $next($request);
}
}
<?php
Route::group([
'middleware' => 'api',
], function ($router) {
Route::post('login', 'AuthController@login');
Route::post('logout', 'AuthController@logout');
Route::post('refresh', 'AuthController@refresh');
Route::post('me', 'AuthController@me');
});
\App\Http\Middleware\CORS::class,
'CORS' => \App\Http\Middleware\CORS::class,
angular代碼
onSubmit() {
return this.http.post('http://localhost:8000/api/login', this.form).subscribe(
data => console.log(data),
erro => console.log(erro)
);
}
1 個解決方案
解決方案1
0 已采納 2020-04-03 13:52:17
中間件:
public function handle($request, Closure $next)
{
$origin = $request->header('origin');
$origin = $origin ?? '*';
// ALLOW OPTIONS METHOD
$headers = [
'Access-Control-Allow-Origin' => $origin,
'Access-Control-Allow-Methods'=> 'GET, POST, DELETE, PUT, OPTIONS, HEAD, PATCH',
'Access-Control-Allow-Headers'=> 'Authorization,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Set-Cookie',
'Access-Control-Allow-Credentials'=> 'true'
];
if($request->getMethod() == "OPTIONS") {
// The client-side application can set only headers allowed in Access-Control-Allow-Headers
return Response::make('OK', 200, $headers);
}
$response = $next($request);
if($response instanceof JsonResponse){
foreach($headers as $key => $value) {
$response->header($key, $value);
}
}
return $response;
}
PHP-CORS策略已阻止對字體的訪問:沒有“ Access-Control-Allow-Origin”標頭
[英]PHP - Access to Font has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header
SYMFONY NELMIO CORS 問題:Access-Control-Allow-Origin header 包含多個值
[英]SYMFONY NELMIO CORS issue : Access-Control-Allow-Origin header contains multiple values
CORS 錯誤:對預檢請求的響應 'Access-Control-Allow-Origin' header 包含多個值 '*、*'、
[英]CORS error: Response to preflight request The 'Access-Control-Allow-Origin' header contains multiple values '*, *',
NGINX的“Access-Control-Allow-Origin”標頭包含多個值
[英]NGINX 'Access-Control-Allow-Origin' header contains multiple values
無法在React中使用GraphQL查詢-已被CORS策略阻止:所請求的資源上不存在“ Access-Control-Allow-Origin”標頭
[英]Cannot use GraphQL queries in React - has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource
訪問 abcd.com 上的字體已被 CORS 政策阻止:沒有“訪問控制允許來源”
[英]Access to Font at abcd.com has been blocked by CORS policy: No 'Access-Control-Allow-Origin'
Laravel7 CORS:被 CORS 策略阻止:對預檢請求的響應未通過訪問控制檢查:否 'Access-Control-Allow-Origin'
[英]Laravel7 CORS : blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin'
header("訪問控制允許來源:"); 不工作 CORS 策略,預檢請求不允許重定向
[英]header("Access-Control-Allow-Origin: "); dont work CORS policy, Redirect is not allowed for a preflight request
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
已被 CORS 政策阻止:無“訪問控制允許來源”
PHP-CORS策略已阻止對字體的訪問:沒有“ Access-Control-Allow-Origin”標頭
SYMFONY NELMIO CORS 問題:Access-Control-Allow-Origin header 包含多個值
CORS 錯誤:對預檢請求的響應 'Access-Control-Allow-Origin' header 包含多個值 '*、*'、
NGINX的“Access-Control-Allow-Origin”標頭包含多個值
Cors header “訪問控制允許來源”被阻止 Api 響應
無法在React中使用GraphQL查詢-已被CORS策略阻止:所請求的資源上不存在“ Access-Control-Allow-Origin”標頭
訪問 abcd.com 上的字體已被 CORS 政策阻止:沒有“訪問控制允許來源”
Laravel7 CORS:被 CORS 策略阻止:對預檢請求的響應未通過訪問控制檢查:否 'Access-Control-Allow-Origin'
header("訪問控制允許來源:"); 不工作 CORS 策略,預檢請求不允許重定向
相關標簽