web development - FML! Stupid cross origin policy, how I despise you! Why must it always get in my way :( - devRant

Ranter

Comments

0

bhouston

3959

8y

Yep. Annoying cross site security. Trying to make a query to an API and it's getting blocked by the browser because the API is not on the same domain as my site. Stupid....
2

disolved

527

8y

If you're complaining about other domains having turned of CORS forthe resource you want it's basically like saying «gah, I hate the police, they always stop me from breaking into people's homes» 😀
0

Sarcaxxo

288

8y

Reverse proxy it with nginx to another domain and add the missing headers. Or proxy it directly to your domain.
0

disolved

527

8y

@Sarcaxxo i had no idea you could do that, that's pretty cool 👍
0

bhouston

3959

8y

@Sarcaxxo How would one go about doing that?
3

Sarcaxxo

288

8y

@bhouston combine
https://nginx.com/resources/...
and
https://enable-cors.org/server_ngin...

location /its/now/my/api/ {
proxy_pass http://api.example.com/;
add_header 'Access-Control-Allow-Origin' '*';
}
0

bhouston

3959

8y

@Sarcaxxo hmmm...darn. I have tried adding that header before. Maybe ajax is just the wrong tool to use. :(

Related Rants

devRant © 2021 Hexical Labs LLC
Privacy Policy | Terms of Service