angularcorsapigeeangular5
Apigee + Angular No 'Access-Control-Allow-Origin' header is present on the requested resource
Morning;
Maybe this question was asked before 100 times, but really I can not resolve it . I have this configuration in Apigee that respond to OPTIONS request.
<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<AssignMessage async="false" continueOnError="false" enabled="true" name="AM-AddCors">
<DisplayName>AM-AddCors</DisplayName>
<Properties/>
<Add>
<Headers>
<Header name="Access-Control-Allow-Origin">*</Header>
<Header name="Access-Control-Allow-Headers">Content-Length, Content-Disposition, Origin, x-requested-with, Accept, Content-Type, Authorization</Header>
<Header name="Access-Control-Max-Age">3628800</Header>
<Header name="Access-Control-Allow-Methods">GET, PUT, POST, DELETE</Header>
</Headers>
</Add>
<IgnoreUnresolvedVariables>true</IgnoreUnresolvedVariables>
<AssignTo createNew="false" transport="http" type="request"/>
</AssignMessage>
In the client side I make this call with Angular (HttpClient)
public downloadS2Report(url) {
let headers = new HttpHeaders();
let fullurl = environment.config.fundsApi.concat(url);
headers = headers.set("Authorization", "Bearer *****");
return this.http.get(fullurl, {headers: headers})
.map((response:any) => {
if (response.status == 200) {
var contentType = 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet';
var blob = new Blob([(<any>response)._body], {type: contentType});
return blob;
}
});
}
I can see the results in the debug view in chrome but I got the famous error with Angular "Access-Control-Allow-Origin' header is present on the requested resource". Do I miss a params in the Apigee config?
Solution
You need to respond with the relevant CORS headers on all responses, not just the OPTIONS pre-flight request. So on your GET response you also need:
<Headers>
<Header name="Access-Control-Allow-Origin">*</Header>
<Header name="Access-Control-Allow-Headers">Content-Length, Content-Disposition, Origin, x-requested-with, Accept, Content-Type, Authorization</Header>
<Header name="Access-Control-Max-Age">3628800</Header>
<Header name="Access-Control-Allow-Methods">GET, PUT, POST, DELETE</Header>
</Headers>
- Angular 14 Access Route Config Title Property in Component
- Angular getting URL paramters doesn't work as it should
- forkJoin after APIs are completed - rxjs
- table header background color change dynamically - Angular material
- How to set input format of DatePipe
- How to get the position after drop with cdkDrag?
- Typescript target warnings after Angular 15 update
- How to change the font family in material v18
- Angular slick grid error after deployed package
- How do I import svg from file to a component in angular 5?
- Images are not loading after deploying angular app on github pages
- How to Refresh a Component in Angular
- Get directive of component from another component
- Why Chunk files are generated ,when the "ng build --prod" command is isssued in angular 2 and above versions
- How to detect change in Angular signal input function?
- quill-mention Select Event.How to get Selected mentions from Quill Mention
- ASP.NET Core 6 Web API : custom authentication handler and Angular HttpInterceptor [receive Status code =0 for 401 Unauthorized Response]
- ng-class does not update on variable change using tailwindcss styles
- Textract JSON data to Image drawing with Kendo UI Angular 11
- How can I hide the filter icon in Ag-grid?
- How to apply secondary or tertiary colors to Angular Material components with M3 theme?
- Disable float for mdInput text field
- Elasticsearch curl request not working as expected in Angular 4
- how to show this.variable value in observer callback function in chrome debug mode
- Conditional Styling of an Angular component
- Angular Previous page button getting disabled when the next page button gets clicked
- Angular InjectionToken throws 'No provider for InjectionToken'
- Check for browser optional chaining support in Angular project
- Mixing less and sass files in Angular application
- How can I detect/watch "dirty-status" of an angular2-form in the right way?