Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
I
I
iQuasar2019-07-26 01:01:21
JavaScript
iQuasar, 2019-07-26 01:01:21

How to avoid CORS error with fetch credentials?

Good day :)
The essence of my problem is as follows:
I'm trying to fetch json from an external resource using fetch. fetch without parameters returns json without the required data array (it turns out to be hidden). I set the credentials: 'include' property, which naturally results in a CORS error (The value of the 'Access-Control-Allow-Credentials' header in the response is '' which must be 'true' when the request's credentials mode is 'include ').
Accordingly, you need to add the Access-Control-Allow-Credentials property to the response header. This can only be done in the backend, as far as I understand, I add an express backend to create-react-app. added there

var cors = require('cors');
app.use(cors());

But still nothing works. That I just didn't try. I set up a proxy in node, did a fetch in the backend part, it doesn't work.
const url = 'https://www.instagram.com/graphql/query/?query_id=17851374694183129&variables={"id":"500818047","first":10}';
const api_url = await fetch(url, {
   credentials: 'include'
});
const data = await api_url.json();
console.log(data);

Tell me the solution, maybe everything can be done easier or am I doing something wrong
ps in jsone the edges array is hidden

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
A
Anton Shamanov, 2019-07-26
@SilenceOfWinter

if we are talking about instagram, then there seemed to be an option to return jsonp with which there should not be any problems.

Report
K
Kerridan, 2021-11-30
@Kerridan

We need to set the correct headers in the server response in order for cross-domain requests to work and we have access to the content that the server sends. Here is a header snippet:
// No authorization
Access-Control-Allow-Origin: *
// Authorization is required, remember that https is required on the server and client
Access-Control-Allow-Origin: https://example.ru
Access-Control- Allow-Credentials: true
// Need access to response headers
Access-Control-Expose-Headers: *

Similar questions
S
Sdnly2015-06-17 20:12:02
How to control an air cylinder from a PC via Ethernet? 2Reply
B
B1ackGh0st2019-11-01 14:21:42
How to change button labels in flask-admin? 4Reply
H
hateyyyy2017-06-03 18:43:08
How to search for nearest elements in multidimensional space? 3Reply
D
desuvin2015-06-25 18:32:53
Cache in node-webkit? 2Reply
F
Fill Full2019-11-06 11:47:10
Help with choosing a wiki engine for creating a methodological Web-based manual + along the way defending a diploma on it? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question