|
|
报错:has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
环境:thinkphp6 +nginx
今天和VUE配合调用接口的时候发现跨域报错。
参考
跨域请求 · ThinkPHP5.1完全开发手册 · 看云
中间件 · ThinkPHP6.0完全开发手册 · 看云
按照官网给出的例子,在中间件配置允许跨域- <?php
-
- // 中间件配置
-
- use think\middleware\AllowCrossDomain;
-
- return [
- AllowCrossDomain::class
- ];
-
- Access to XMLHttpRequest at from origin has been blocked by CORS policy:
- Request header field x-token is not allowed by
- Access-Control-Allow-Headers in preflight response.
新建一个自定义的跨域中间件- <?php
-
- namespace app\middleware;
- use think\middleware\AllowCrossDomain;
-
-
- class AllowCrossDomainMiddleware extends AllowCrossDomain
- {
- // 加入自定义请求头参数 X-Token
- protected $header = [
- 'Access-Control-Allow-Credentials' => 'true',
- 'Access-Control-Max-Age' => 1800,
- 'Access-Control-Allow-Methods' => 'GET, POST, PATCH, PUT, DELETE, OPTIONS',
- 'Access-Control-Allow-Headers' => 'Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With, X-Token',
- ];
- }
- <?php
-
- // 中间件配置
-
- use think\middleware\AllowCrossDomain;
- use app\middleware\AllowCrossDomainMiddleware;
-
- return [
- // 不使用默认的跨域中间件
- // AllowCrossDomain::class
-
- // 使用自定义跨域中间件
- AllowCrossDomainMiddleware::class
- ];
-
最后解决办法:
可以在入口文件添加以下代码,单独处理options请求
public/index.php- // 添加允许跨域请求头
- header("'Access-Control-Allow-Credentials: true");
- header("Access-Control-Allow-Origin: *");
- header("Access-Control-Allow-Headers: Authorization, Content-Type, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, X-CSRF-TOKEN, X-Requested-With, X-Token");
- header('Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, PATCH');
-
- // 处理 OPTIONS 请求
- if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
- exit;
- }
免责声明:如果侵犯了您的权益,请联系站长,我们会及时删除侵权内容,谢谢合作! |
本帖子中包含更多资源
您需要 登录 才可以下载或查看,没有账号?立即注册
×
|
窥视卡
雷达卡
发表于 2024-4-20 08:22:41
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜
