IE9 jQuery AJAX with CORS returns Access is denied

Question

The following works in all browsers except IE  I m testing in IE 9    jQuery support cors   true                ajax              url    messages postMessageReadByPersonEmail                                 crossDomain  true                  data                        messageId         messageId                      personEmail       personEmail                                    success  function                         alert  marked as read                                       error  function a b c                        alert  failed                                       type   post                             I have another function which uses dataType   jsonp   but I don t need any data returned on this AJAX call  My last resort will be to return some jibberish wrapped in JSONP just to make it work   Any ideas why IE is screwing up with a CORS request that returns no data

User · Answer

Note -- Note  do not use  http   www domain xxx  or  http   localhost   or  IP    127 0 0 1  for URL in ajax  only use path directory  and page name without address   false state   var AJAXobj   createAjax    AJAXobj onreadystatechange   handlesAJAXcheck  AJAXobj open  POST    http   www example com dir getSecurityCode php   true   AJAXobj setRequestHeader  Content-Type    application x-www-form-urlencoded  charset UTF-8    AJAXobj send pack     true state   var AJAXobj   createAjax    AJAXobj onreadystatechange   handlesAJAXcheck  AJAXobj open  POST    dir getSecurityCode php   true         lt  lt --- note AJAXobj setRequestHeader  Content-Type    application x-www-form-urlencoded  charset UTF-8    AJAXobj send pack

User · Answer

Getting a cross-domain JSON with jQuery in Internet Explorer 8 and newer versions  Very useful link   http   graphicmaniacs com note getting-a-cross-domain-json-with-jquery-in-internet-explorer-8-and-later   Can help with the trouble of returning json from a X Domain Request   Hope this helps somebody

User · Answer

The problem is that IE9 and below do not support CORS  XDomainRequest do only support GET POST and the text plain conten-type as described here  http   blogs msdn com b ieinternals archive 2010 05 13 xdomainrequest-restrictions-limitations-and-workarounds aspx  So if you want to use all HTTP verbs and or json etc you have to use another solution  I ve written a proxy which will gracefully downgrade to proxying if IE9 or less is used  You do not have to change your code at all if you are using ASP NET   The solution is in two parts  The first one is a jquery script which hooks into the jQuery ajax processing  It will automatically call the webserver if an crossDomain request is made and the browser is IE     ajaxPrefilter function  options  originalOptions  jqXhr        if   window CorsProxyUrl            window CorsProxyUrl     corsproxy                 only proxy those requests        that are marked as crossDomain requests      if   options crossDomain            return             if  getIeVersion    amp  amp  getIeVersion    lt  10            var url   options url          options beforeSend   function  request                request setRequestHeader  X-CorsProxy-Url   url                      options url   window CorsProxyUrl          options crossDomain   false              In your web server you have to receive the request  get the value from the X-CorsProxy-Url http header and do a HTTP request and finally return the result   My blog post  http   blog gauffin org 2014 04 how-to-use-cors-requests-in-internet-explorer-9-and-below

User · Answer

I was testing a CORS web service on my dev machine and was getting the  Access is denied  error message in only IE   Firefox and Chrome worked fine   It turns out this was caused by my use of localhost in the ajax call   So my browser URL was something like   http   my computer my domain local CORS Service test html  and my ajax call inside of test html was something like     fails in IE    ajax     url   http   localhost CORS Service api Controller               Everything worked once I changed the ajax call to use my computer IP instead of localhost       Works in IE   ajax     url   http   192 168 0 1 CORS Service api Controller               The IE dev tools window  Network  tab also shows CORS Preflight OPTIONS request followed by the XMLHttpRequest GET  which is exactly what I expected to see

User · Answer

Try to use jquery-transport-xdr jQuery plugin for CORS requests in IE8 9

User · Answer

I just made all requests JSONP because it was the only solution for all of our supported browsers  IE7  and the regulars   Mind you  your answer technically works for IE9 so you have the correct answer

User · Answer

Complete instructions on how to do this using the  jQuery-ajaxTransport-XDomainRequest  plugin can be found here  https   github com MoonScript jQuery-ajaxTransport-XDomainRequest instructions  This plugin is actively supported  and handles HTML  JSON and XML   The file is also hosted on CDNJS  so you can directly drop the script into your page with no additional setup  http   cdnjs cloudflare com ajax libs jquery-ajaxtransport-xdomainrequest 1 0 1 jquery xdomainrequest min js

User · Answer

To solve this problem  also check if you have some included  js into your ajax file called  I received Access denied error while including shadowbox js in my ajax php

User · Answer

This is a known bug with jQuery  The jQuery team has  no plans to support this in core and is better suited as a plugin    See this comment   IE does not use the XMLHttpRequest  but an alternative object named XDomainRequest   There is a plugin available to support this in jQuery  which can be found here   https   github com jaubourg ajaxHooks blob master src xdr js  EDIT The function   ajaxTransport registers a transporter factory  A transporter is used internally by   ajax to perform requests  Therefore  I assume you should be able to call   ajax as usual  Information on transporters and extending   ajax can be found here    Also  a perhaps better version of this plugin can be found here   Two other notes    The object XDomainRequest was introduced from IE8 and will not work in versions below   From IE10 CORS will be supported using a normal XMLHttpRequest    Edit 2  http to https problem     Requests must be targeted to the same scheme as the hosting page      This restriction means that if your AJAX page is at   http   example com  then your target URL must also begin with HTTP    Similarly  if your AJAX page is at https   example com  then your   target URL must also begin with HTTPS    Source  http   blogs msdn com b ieinternals archive 2010 05 13 xdomainrequest-restrictions-limitations-and-workarounds aspx

User · Answer

Building on the solution by MoonScript  you could try this instead   https   github com intuit xhr-xdr-adapter blob master src xhr-xdr-adapter js  The benefit is that since it s a lower level solution  it will enable CORS  to the extent possible  on IE 8 9 with other frameworks  not just with jQuery  I ve had success using it with AngularJS  as well as jQuery 1 x and 2 x

User · Answer

Building off the accepted answer by  dennisg  I accomplished this successfully using jQuery XDomainRequest js by MoonScript   The following code worked correctly in Chrome  Firefox and IE10  but failed in IE9  I simply included the script and it now automagically works in IE9   And probably 8  but I haven t tested it    var displayTweets   function            ajax           cache  false          type   GET           crossDomain  true          url  Site config   apiRoot     Api GetTwitterFeed           contentType   application json  charset utf-8           dataType   json           success  function  data                for  var tweet in data                    displayTweet data tweet

User · Answer

Update as of early 2015  xDomain is a widely used library to supports CORS on IE9 with limited extra coding   https   github com jpillora xdomain

[jquery] IE9 jQuery AJAX with CORS returns "Access is denied"

Examples related to jquery

Examples related to internet-explorer-9

Examples related to cross-domain

Examples related to jsonp

Examples related to cors