碼上快樂

相關內容    簡體    繁體

來自 CORS 預檢通道的 CORS 頭 'Access-Control-Allow-Headers' 的令牌 'appkey' 無效)。

本文轉載自   查看原文   2016-11-18 14:34   12082    HTML5技術

1、服務端:

web.config文件中:

<system.webServer>
  
     <httpProtocol>
      <customHeaders> 
       <add name="Access-Control-Allow-Origin" value="http://nmcs.lemon95.com:8089" /> 
       <add name="Access-Control-Allow-Credentials" value="true" /> 
       <add name="Access-Control-Allow-Headers" value="SecretKey,AppKey,UniqueKey" /> 
      </customHeaders>
    </httpProtocol>
</system.webServer>

ps:

Access-Control-Allow-Origin:只能配置一個域名,不能配置多個域名,不能為"*"
Access-Control-Allow-Headers:加入需要傳入參數名
 

2、客服端ajax異步調用

<script src="js/jquery-1.8.2.js"></script>
    <!--<script src="js/stats.js"></script>-->
    <script>

        function test()
        {
            var url = "http://xxxx/Stats"; //api地址
            
            $.ajax({
                type: "get",
                url: url,
                data: null,
                dataType: "json",
                cache: false,
                xhrFields: {
                    withCredentials: true
                },
                crossDomain: true,
                headers:
                {
                    SecretKey: "ec8b570ad4bd403783c52ecb5cdfa849",
                    AppKey: "1259402909",
                    UniqueKey:"987654321"
                },
                beforeSend: function ()
                {
                    
                },           
                success: function (data)
                {
                    alert(data);
                },
                complete: function (XMLHttpRequest, textStatus) {
                   
                },
                error: function (errorData) {
                    alert(errorData);
                }
            });
        }
    </script>

 


免責聲明!

本站轉載的文章為個人學習借鑒使用,本站對版權不負任何法律責任。如果侵犯了您的隱私權益,請聯系本站郵箱yoyou2525@163.com刪除。



猜您在找 Access-Control-Allow-Headers has been blocked by CORS policy: Request header field authorization is not allowed by Access-Control-Allow-Headers in preflight response. Access-Control-Allow-Headers 等基礎常識 Access-Control-Allow-Headers等基礎常識 axios -- has been blocked by CORS policy: Request header field content-type is not allowed by Access-Control-Allow-Headers in preflight response. 跨域CORS 頭缺少 'Access-Control-Allow-Origin' CORS 頭缺少 'Access-Control-Allow-Origin'問題 關於跨域響應頭Access-Control-Allow-Headers的一些說明 Access-Control-Allow-Methods: OPTIONS & CORS vue開發之跨域請求,請求頭not allowed by Access-Control-Allow-Headers,后端cookie session值取不到(二)
 
粵ICP備18138465號   © 2018-2025 CODEPRJ.COM