Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
v_i_kaisarov2020-08-20 16:34:04
Yii
v_i_kaisarov, 2020-08-20 16:34:04

Yii2 CORS policy: Response to preflight request doesn't pass access control check why so?

I'm trying to upload an image to the server, it gives errors

error

Access to fetch at 'test/api/photo' from origin 'localhost:8080' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.
POST test/api/photo net::ERR_FAILED
Uncaught (in promise) TypeError: Failed to fetch


I don't understand how to turn it off
Here is my behaviors
public function behaviors()
    {
        $behaviors = parent::behaviors();
        
        $auth = $behaviors['authenticator'];
        unset($behaviors['authenticator']);
    
        $behaviors['corsFilter'] = [
            'class' => \yii\filters\Cors::className(),
            'cors' => [
                'Access-Control-Allow-Origin' => ['*'],
                'Access-Control-Request-Method' => ['GET', 'POST', 'PUT', 'PATCH', 'DELETE', 'HEAD', 'OPTIONS'],
                'Access-Control-Request-Headers' => ['*'],
                'Access-Control-Allow-Credentials' => true,
                'Access-Control-Max-Age' => 86400,
                'Access-Control-Expose-Headers' => [],
            ]
        ];

        $behaviors['authenticator'] = [
            'class' => \app\filters\BearerAuth::className(),
        ];
        $behaviors['authenticator']['except'] = ['options'];
        return $behaviors;
    }


If you need it, here is the full code https://github.com/VKaysarov/REST-API-WorldSkills-
Interestingly, UserConroller managed to turn off CORS like this

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
S
Shurik, 2020-08-20
@svisch

Recently suffered with CORS on yii. What I didn’t try, in the end it only helped to add the following to index.php
I had apache, if you have a different web server, then I think you need to google it.

// Allow from any origin
if (isset($_SERVER['HTTP_ORIGIN'])) {
    // should do a check here to match $_SERVER['HTTP_ORIGIN'] to a
    // whitelist of safe domains
    header("Access-Control-Allow-Origin: {$_SERVER['HTTP_ORIGIN']}");
    header('Access-Control-Allow-Credentials: true');
    header('Access-Control-Max-Age: 86400');    // cache for 1 day
}
// Access-Control headers are received during OPTIONS requests
if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {

    if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_METHOD']))
        header("Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS");

    if (isset($_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']))
        header("Access-Control-Allow-Headers: {$_SERVER['HTTP_ACCESS_CONTROL_REQUEST_HEADERS']}");

}

Similar questions
M
Mikhail Artemiev2017-04-04 10:54:56
How to set a comment for a table from the console in migrate/create_table? 2Reply
E
EvgMul2017-04-04 13:55:16
How to correctly write a routing rule in Yii2? 1Reply
A
Abr_ya2019-09-03 13:50:46
Yii2 how to understand in the controller that the Save button is pressed in the form? 3Reply
I
iceman21122015-04-05 12:10:54
How to implement verification of SLAE solution? 1Reply
I
ivanitch2017-04-05 10:06:06
How to generate URL for nested categories in Yii2? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question