ruby on rails - Allow anything through CORS Policy -


how can disable cors? reason wild carded allowed origins , headers yet ajax requests still complain origin not allowed cors policy....

my applications controller :

class applicationcontroller < actioncontroller::base   protect_from_forgery   before_filter :current_user, :cors_preflight_check   after_filter :cors_set_access_control_headers  # responses in controller, return cors access control headers.  def cors_set_access_control_headers   headers['access-control-allow-origin'] = '*'   headers['access-control-allow-methods'] = 'post, get, options'   headers['access-control-allow-headers'] = '*'   headers['access-control-max-age'] = "1728000" end  # if preflight options request, short-circuit # request, return necessary headers , return empty # text/plain.  def cors_preflight_check   if request.method == :options     headers['access-control-allow-origin'] = '*'     headers['access-control-allow-methods'] = 'post, get, options'     headers['access-control-allow-headers'] = '*'     headers['access-control-max-age'] = '1728000'     render :text => '', :content_type => 'text/plain'   end end   private   # user logged in   def current_user     @current_user ||= user.find(session[:user_id]) if session[:user_id]   end   helper_method :current_user  end

routes: 

  match "*all" => "application#cors_preflight_check", :constraints => { :method => "options" }   match "/alert" => "alerts#create"   match "/alerts" => "alerts#get"   match "/login" => "sessions#create"   match "/logout" => "sessions#destroy"   match "/register" => "users#create"

edit---

i tried:

   config.middleware.use rack::cors       allow         origins '*'         resource '*',              :headers => :any,              :methods => [:get, :post, :delete, :put, :options]       end     end

in application.rb

--edit 2---

the problem chrome extensions may not support cors think. how can fetch information bypassing cors? how should respond preflight check?

i've same requirements on public api used rails-api.

i've set header in before filter. looks this:

headers['access-control-allow-origin'] = '*' headers['access-control-allow-methods'] = 'post, put, delete, get, options' headers['access-control-request-method'] = '*' headers['access-control-allow-headers'] = 'origin, x-requested-with, content-type, accept, authorization'

it seems missed access-control-request-method header.


Comments

Post a Comment

Popular posts from this blog

curl - PHP fsockopen help required -

i trying work on cloudflare api , have found in documentation. unfortunately have no idea how can use in fsockopen or through curl. here example of post request. need know how can make request below data post using curl or fsockopen curl https://www.cloudflare.com/api_json.html -d 'a=cache_lvl' \ -d 'tkn=8afbe6dea02407989af4dd4c97bb6e25' \ -d 'email=sample@example.com' \ -d 'z=example.com' \ -d 'v=agg' here link cloudflare https://www.cloudflare.com/docs/client-api.html#s4.2 try one: $ch = curl_init("https://www.cloudflare.com/api_json.html"); curl_setopt($ch, curlopt_returntransfer,1); curl_setopt($ch, curlopt_followlocation, 1); curl_setopt($ch, curlopt_ssl_verifypeer,false); // handling of -d curl parameter here. $param = array( 'a' => 'cache_lvl', 'tkn' => '8afbe6dea02407989af4dd4c97bb6e25', 'email' => 'sample@example.com', 'z' =...
Read more

HTTP/1.0 407 Proxy Authentication Required PHP -

i working in restricted network/limited access internet. since have use proxy make web service call. here php code calling web service , response . $client = new soapclient("http: //www.xyz.com/abc/wsdls/login.wsdl", array("trace" => 1, "exceptions" => 1, 'proxy_host' => $proxy_host, 'proxy_port' => $proxy_port, 'proxy_login' => $proxy_login, 'proxy_password' => $proxy_password)); response is fatal error: uncaught soapfault exception: [wsdl] soap-error: parsing wsdl: couldn't load ' http://www.xyz.com/abc/wsdls/login.wsdl ' : failed load external entity if copy url error message , paste in browser(with same proxy settings) works. 2nd scenario is, if pass values instead of variables giving me diffarant response $client = new soapclient("http: //www.xyz.com/abc/wsdls/login.wsdl", array("trace" => 1, "exceptions" => 1, 'proxy_host' ...
Read more

c# - Resource not found error -

i have problem accessing method on homecontroller. show code of method : [httpget] public actionresult decriptidentifiantetredirige(string login_crypter, string mdp_crypter) { string loginacrypter = _globalmanager.protegemotdepasse(login_crypter); string mdpacrypter = _globalmanager.protegemotdepasse(mdp_crypter); user userapp = new models.user(login_crypter, mdp_crypter); if (userapp.authentificationvalidee(userapp.userlogin, userapp.password)) { session["name"] = userapp.userlogin; return redirecttoaction("accueil", "home"); } else { return redirecttoaction("validerauthentification", "home"); } } then in routeconfig.cs wrote route : routes.maproute( name: "authentificationapresdecryptage", url: "{controller}/{action}/{login_crypter}/{mdp_crypter}", defaults: new...
Read more