正在设置访问控制允许原点
Setting Access-Control-Allow-Origin
我有一个简单的.NET web服务:
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.Services;
/// <summary>
/// Summary description for WebService
/// </summary>
[WebService(Namespace = "http://tempuri.org/")]
[WebServiceBinding(ConformsTo = WsiProfiles.BasicProfile1_1)]
// To allow this Web Service to be called from script, using ASP.NET AJAX, uncomment the following line.
[System.Web.Script.Services.ScriptService]
public class WebService : System.Web.Services.WebService {
public WebService () {
//Uncomment the following line if using designed components
//InitializeComponent();
}
[WebMethod]
public string HelloWorld() {
return "Hello World";
}
[WebMethod]
public int Add(int x, int y)
{
return x+y;
}
}
尝试从Java脚本调用:
<html>
<head>
<title></title>
</head>
<body>
<script src="http://ajax.googleapis.com/ajax/libs/jquery/2.0.0/jquery.min.js"></script>
<script>
function ss() {
var webserUrl = "http://localhost:41026/WebService.asmx";
var soapRequest =
'<?xml version="1.0" encoding="utf-8"?> '
<soap:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"> '
<soap:Body> '
<Add xmlns="http://tempuri.org/"> '
<x>int</x> '
<y>int</y> '
</Add> '
</soap:Body> '
</soap:Envelope>';
$.ajax({
type: "POST",
url: webserUrl,
contentType: "text/xml",
dataType: "xml",
data: soapRequest,
success: SuccessOccur,
error: ErrorOccur
});
};
function SuccessOccur(data, status, req) {
if (status == "success")
alert(req.responseText);
}
function ErrorOccur(data, status, req) {
alert(req.responseText + " " + status);
}
</script>
<form>
<input type="button" value="Click here" onclick="ss()">
</form>
</body>
</html>
收到错误:
XMLHttpRequest cannot load http://localhost:41026/WebService.asmx. Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'null' is therefore not allowed access.
据我所知,这是某种CORS问题。不幸的是,我找不到解决办法。我必须做什么?在哪里以及如何解决服务器、客户端甚至浏览器中的问题?
UPD:正在更新web.config。现在看起来:
<!--
For more information on how to configure your ASP.NET application, please visit
http://go.microsoft.com/fwlink/?LinkId=169433
-->
<configuration>
<system.webServer>
<httpProtocol>
<customHeaders>
<add name="Access-Control-Allow-Origin" value="*" />
<add name="Access-Control-Allow-Headers" value="Content-Type" />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, DELETE, OPTIONS" />
</customHeaders>
</httpProtocol>
</system.webServer>
<system.web>
<compilation debug="true" targetFramework="4.5" />
<httpRuntime targetFramework="4.5" />
</system.web>
</configuration>
但现在我有内部服务器错误500:
Remote Address:[::1]:41026
Request URL:http://localhost:41026/WebService.asmx
Request Method:POST
Status Code:500 Internal Server Error
Response Headers
view source
Access-Control-Allow-Headers:Content-Type
Access-Control-Allow-Methods:GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Origin:*
Cache-Control:private
Content-Length:1749
Content-Type:text/xml; charset=utf-8
Date:Tue, 03 Nov 2015 15:29:32 GMT
Server:Microsoft-IIS/8.0
X-AspNet-Version:4.0.30319
X-Powered-By:ASP.NET
X-SourceFiles:=?UTF-8?B?QzpcanNjcmlwdG5vbnNlbnNcV2ViU2l0ZTJcV2ViU2VydmljZS5hc214?=
Request Headers
view source
Accept:application/xml, text/xml, */*; q=0.01
Accept-Encoding:gzip, deflate
Accept-Language:en-US,en;q=0.8
Connection:keep-alive
Content-Length:337
Content-Type:text/xml
Host:localhost:41026
Origin:null
User-Agent:Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36
Request Payload
<?xml version="1.0" encoding="utf-8"?> <soap:Envelope xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"> <soap:Body> <Add xmlns="http://tempuri.org/"> <x>int</x> <y>int</y> </Add> </soap:Body> </soap:Envelope>
您需要允许web.config中的自定义标头
<system.webServer>
<httpProtocol>
<customHeaders>
<add name="Access-Control-Allow-Origin" value="*" />
<add name="Access-Control-Allow-Headers" value="Content-Type" />
<add name="Access-Control-Allow-Methods" value="GET, POST, PUT, DELETE, OPTIONS" />
</customHeaders>
</httpProtocol>
</system.webServer>
相关文章:
- CORS:访问控制允许原点不等于提供的原点
- 本地跨原点数据错误
- d3用时钟中的两个指针变换原点
- Cordova白名单允许导航与访问原点
- 谷歌地图API-从方向的原点检索定位
- 跨原点-弹出窗口(window.opener为空)
- 全局变量原点
- 如何在 html Web 应用中检测滑动原点位置
- 在自定义 JS 游标上设置游标原点
- 三.js - 如何获取相机相对于原点的位置
- 即使在服务器将访问控制允许原点设置为“*”之后,也会收到javascript错误
- OpenLayers圆始终显示在原点
- JSONP跨原点错误'不存在Access Control Allow Origin标头'
- 如何在交叉原点的角度中设置xsrf令牌
- 角度:原点http://localhost在Access Control Allow Origin标头中找不到
- 未捕获的InvalidValueError:在属性原点中:索引0处:不是字符串,也不是LatLng或LatLngLite
- DynamoDB本地访问控制允许原点
- 否'访问控制允许来源'标头存在于请求的资源上.原点''因此不允许访问
- 带有本地客户端的Socket.io.原点为null且访问控制允许原点
- CORS标头'缺少访问控制允许原点