从源'null'对XMLHttpRequest的访问已被CORS策略阻止:对预检请求的响应未通过访问控制

时间:2020-07-04 16:36:09

标签: javascript rest xmlhttprequest cors

我正在执行以下代码,但出现错误。如何修复..我在POSTMAN中工作正常..在Chrome中,它抛出错误

jscallout.html:1 Access to XMLHttpRequest at 'https://api.getresponse.com/v3/contacts' from origin 'null' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.

JS-

<script>
const request = new XMLHttpRequest();
request.open("GET","https://api.getresponse.com/v3/contacts");
request.setRequestHeader("X-Auth-Token","api-key 1234567890");
request.setRequestHeader('Access-Control-Allow-Origin','*');
request.setRequestHeader('Access-Control-Allow-Methods','GET');
request.setRequestHeader('Access-Control-Allow-Headers','X-Auth-Token,Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With');
request.send();
request.onload = ()=>{
    console.log(request);
    if(request.status == 200) {
        console.log(JSON.parse(request.response));
    }
}
</script>

1 个答案:

答案 0 :(得分:-2)

我想这需要配置服务器端,在服务器端启用了CORS并接受来自某些列入白名单的URL的请求。

相关问题
最新问题