我只是把我的头发拉出来…我早就试图在这个Rails应用程序中启用CORS,而且它不起作用.我试过
this,使用
Rack Cors Gem,this answer和这
post都没有成功.
有人可以指向正确的方向吗?
这是我的js:
var req = new XMLHttpRequest(); if ('withCredentials' in req) { // req.open('GET',"https://api.github.com/users/mralexgray/repos",true); req.open('GET',"http://www.postcoder.lc/postcodes/" + value,true); // Just like regular ol' XHR req.onreadystatechange = function() { if (req.readyState === 4) { if (req.status >= 200 && req.status < 400) { // JSON.parse(req.responseText) etc. console.log(req.responseText); } else { // Handle error case } } }; req.send(); }
当我尝试这个url(从外部客户端):https://api.github.com/users/mralexgray/repos这可以正常工作,我假设问题是与我的Rails API.我错了吗?
编辑:目前我在控制器里有这个:
skip_before_filter :verify_authenticity_token before_filter :cors_preflight_check after_filter :cors_set_access_control_headers # For all responses in this controller,return the CORS access control headers. def cors_set_access_control_headers headers['Access-Control-Allow-Origin'] = '*' headers['Access-Control-Allow-Methods'] = 'POST,GET,OPTIONS' headers['Access-Control-Max-Age'] = "1728000" end # If this is a preflight OPTIONS request,then short-circuit the # request,return only the necessary headers and return an empty # text/plain. def cors_preflight_check headers['Access-Control-Allow-Origin'] = '*' headers['Access-Control-Allow-Methods'] = 'POST,OPTIONS' headers['Access-Control-Allow-Headers'] = 'X-Requested-With,X-Prototype-Version' headers['Access-Control-Max-Age'] = '1728000' end
解决方法
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。