Comments (11)
adamchainz
commented on August 19, 2024
1
Origin is sent by your browser on cross-origin requests only: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Origin .
from django-cors-headers.
bhaugen
commented on August 19, 2024
I have this problem when I am running locally using runserver (the django dev server).
Same fix worked.
What's the prognosis for an "official" fix? I'd rather stick with what seems to be the main source. Pip install and all.
from django-cors-headers.
bhaugen
commented on August 19, 2024
P.S. this issue only affects the local django dev server. Works fine on Apache without the fix. So I'm not inclined to fork it.
from django-cors-headers.
angry-elf
commented on August 19, 2024
@bhaugen What version of apache you use? I have apache 2.2.31 and there are no "Origin" header there. From where it come from?
from django-cors-headers.
bhaugen
commented on August 19, 2024
@angry-elf - we deploy on Webfaction. Apache 2.something. I have no server fu, which is why we deploy on Webfaction. So I can't explain very much here. Sorry to disappoint. Maybe somebody else can come along and enlighten both of us.
from django-cors-headers.
angry-elf
commented on August 19, 2024
@bhaugen
just realized, i need cors headers at other side of requests, so i don't need it in my application at all :)
from django-cors-headers.
bhaugen
commented on August 19, 2024
I think that's right. I just needed
CORS_ORIGIN_ALLOW_ALL = True
CORS_ALLOW_CREDENTIALS = True
for selected URLs.
Which is what django-cors-headers supplies.
from django-cors-headers.
adamchainz
commented on August 19, 2024
Sounds like this issue was fixed.
from django-cors-headers.
commented on August 19, 2024
Hi,
in the current release,
on process_response function in corsheaders/middleware.py
origin = request.META.get('HTTP_ORIGIN') is always empty, so
response["Access-Control-Allow-Origin"] is impossibile to set.
Just to be sure, it's correct because I'm in development mode?
Thanks
Pietro
from django-cors-headers.
commented on August 19, 2024
Thank you ...
Clearly, I need to sleep ...
from django-cors-headers.
andrscyv
commented on August 19, 2024
Hi!
I have this problem on Django 2.2.3 while running both the back end and the front end in localhost, si there any workaround to make it work ?
from django-cors-headers.
Related Issues (20)
- On Django 4.1, HOT 1
- 'CORS Missing Allow Origin' response despite settings aligned to documentation and links HOT 6
- i stll see this erorr Access to font at 'https://fra1.digitaloceanspaces.com/ewan-space/ewan/static/admin/fonts/Roboto-Regular-webfont.woff' from origin 'http://127.0.0.1:9000' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. HOT 1
- Allow to have a list of patterns for `CORS_URLS_REGEX` HOT 1
- Listing Origin, DNT, or Accept-Encoding as allowed request headers is never necessary HOT 1
- No "Access-Control-Allow-Origin" in response despite all being set properly HOT 19
- Access-Control-Allow-Credentials absent from response headers HOT 1
- Django CORS issue with VUE HOT 1
- Request is lacking Cookie, csrftoken, sessionid after hitting the back. HOT 2
- How to set Access-Control-Allow-Origin for "chrome-extension://*" HOT 1
- Access to XMLHttpRequest from origin 'http://localhost:3000' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. HOT 1
- [help]Unable to set CORS headers after configuring the library HOT 6
- origin not in headers HOT 2
- Incompatible with Daphne under ASGI HOT 5
- check_request_enabled.send() should not be called from an async context HOT 2
- no "Access-Control-Allow-Origin" when open site from google HOT 4
- No "Access-Control-Allow-Origin" on fresh django project HOT 2
- CORS stop working on cloud editors like Gitpod HOT 1
- High Security Vulnerability on dependency (sqlparse version 0.4.4) with risk of Denial of Service HOT 1
- CSRF Errors with Cloudflare HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from django-cors-headers.