https://szeching.com/tags/cors/ Recent content in CORS on 瓶子裡的小狐狸 Hugo zh-Hant Fri, 20 May 2022 10:10:00 +0000 https://szeching.com/fix-the-cors-error/ Fri, 20 May 2022 10:10:00 +0000 https://szeching.com/fix-the-cors-error/ <p>最近Y cheung 遇到了兩個典型 CORS error問題，XMLHttpRequest 和 Fetch 請求了跨來源資源被瀏覽器阻擋，記錄一下解決方法。</p> <h2 id="什麼是cross-origin-resource-sharing-cors-跨來源資源共用">什麼是Cross-Origin Resource Sharing (CORS) 跨來源資源共用？<a class="anchorjs-link" href="#%e4%bb%80%e9%ba%bc%e6%98%afcross-origin-resource-sharing-cors-%e8%b7%a8%e4%be%86%e6%ba%90%e8%b3%87%e6%ba%90%e5%85%b1%e7%94%a8"></a></h2><blockquote> <p><strong>Cross-Origin Resource Sharing (CORS)</strong> is an HTTP-header based mechanism that allows a server to indicate any origins (domain, scheme, or port) other than its own from which a browser should permit loading resources. CORS also relies on a mechanism by which browsers make a &ldquo;preflight&rdquo; request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request.</p>