laravelvue.jscorsaxiosvuex
Vuex Axios CORS Block Acess-control-allow-origin
This is the error:
So, I make sure my backend API sends the acess-control-allow-origin header:
This my axios code:
loadTopSales ({ commit }) {
axios
.get('http://tms.test/api/top-sales', {
headers: {
'Access-Control-Allow-Origin': '*',
Accept: 'application/json',
Authorization: 'Bearer ' + this.state.token,
withCredentials: true
}
})
.then(items => {
commit('SET_TOP_SALES', items)
console.log(items)
})
.catch(err => {
console.log(err)
})
}
Please, help me. I've tried every question in stackoverflow
Check curl -v -x options
My backend set header
public function handle($request, Closure $next)
{
$headers = [
'Access-Control-Allow-Origin' => '*',
'Access-Control-Allow-Methods' => 'PUT,POST,GET,OPTIONS,ORIGIN',
'Access-Control-Allow-Headers' => 'Accept,Authorization,Content-Type,Origin,X-Auth-Token',
'Access-Control-Allow-Credentials' => 'true',
];
if ($request->getMethod() === "OPTIONS") {
// The client-side application can set only headers allowed in Access-Control-Allow-Headers
return Response::make('OK', 200, $headers);
}
$response = $next($request);
foreach ($headers as $key => $value){
$response->header($key, $value);
}
return $response;
}
This my answer I config CORS in iis
<httpProtocol>
<customHeaders>
<add name="Access-Control-Allow-Origin" value="*" />
<add name="Access-Control-Allow-Headers" value="Origin, X-Requested-With, Content-Type, Accept,Authorization" />
<add name="Access-Control-Allow-Methods" value="GET, PUT, POST, HEAD, OPTIONS" />
<add name="Access-Control-Allow-Credentials" value="true" />
</customHeaders>
</httpProtocol>
Solution
Seems like the API doesn't handle CORS preflight requests. It should return Access-Control-Allow-Origin header for OPTIONS method as well (alongside Access-Control-Allow-Methods) with 204 No Content.
You can check it with curl -v -X OPTIONS http://tms.test/api/top-sale.
- Relative path or subdirectory with Laravel 11 vite
- How to do dependency injection in livewire 3 form class?
- Domain Not Secured with Valet 3 (Laravel)
- Images are not displayed on the site after they are sent through the database Laravel Backpack
- Error : This cache store does not support tagging
- 403 Forbidden and 500 Internal Server Error after moving Laravel to a new server without terminal access
- Changing input method on the fly
- Where is the boundary for creating a table with types in the database?
- How to control RedirectIfAuthenticated behavior?
- Laravel Paginate with OrderByRaw return different order
- The first API call after login is unauthorized until page reload (Laravel Sanctum & VueJS)
- Display hidden not working with flex in Tailwind
- get linked data from user table in laravel
- "Class 'Fideloper\Proxy\TrustProxies' not found" LARAVEL
- Laravel Request::all() Should Not Be Called Statically
- Laravel Socialite - google login failed “Missing required parameter: code”
- Why do I get error "CSRF token mismatch". React 18 SPA with Laravel 10 API
- Disk [videos] does not have a configured driver
- Laravel Confusion with POST Routes for Ticket Comments and Updates
- How to render a confirmation modal before submitting wizard form? [FilamentPHP]
- Filament Stripe Webhook failing with 419 Error (Page Expired) despite CSRF exclusion
- Counter resets to zero after every chunk in Laravel Excel import
- Undefined variable: errors in Laravel
- cannot perform raw query with DB::select(DB::raw()) after updating to laravel 10
- Disable Laravel's Eloquent timestamps
- Laravel - Load common header and footer to view
- Laravel Schema Builder, setting field description
- Password authentication failed error on running laravel migration
- Allowed memory size of 134217728 bytes exhausted (tried to allocate 20480 bytes) Laravel
- Send emails using Office365 integrated in laravel