CORS header Access-Control-Allow-Origin missing

Question

I m calling this function from my asp net form and getting following error on firebug console while calling ajax      Cross-Origin Request Blocked  The Same Origin Policy disallows reading the remote resource at http   anotherdomain test json   Reason  CORS header  Access-Control-Allow-Origin  missing     var url   http   anotherdomain test json             ajax               url  url              crossOrigin  true              type   GET               xhrFields    withCredentials  true                accept   application json             done function  data                alert data                              fail function  xhr  textStatus  error                var title  message              switch  xhr status                    case 403                      title   xhr responseJSON errorSummary                      message    Please login to your server before running the test                        break                  default                      title    Invalid URL or Cross-Origin Request Blocked                       message    You must explictly add this site      window location origin      to the list of allowed websites in your server                        break                              I ve done alternate way but still unable to find the solution   Note  I ve no server rights to make server side API URL  changes

User · Answer

Server side put this on top of  php    header  Access-Control-Allow-Origin           You can set specific domain restriction access   header  Access-Control-Allow-Origin  https   www example com

User · Answer

This happens generally when you try access another domain s resources   This is a security feature for avoiding everyone freely accessing any resources of that domain  which can be accessed for example to have an exact same copy of your website on a pirate domain    The header of the response  even if it s 200OK do not allow other origins  domains  port  to access the ressources   You can fix this problem if you are the owner of both domains   Solution 1  via  htaccess  To change that  you can write this in the  htaccess of the requested domain file        lt IfModule mod headers c gt      Header set Access-Control-Allow-Origin          lt  IfModule gt    If you only want to give access to one domain  the  htaccess should look like this        lt IfModule mod headers c gt      Header set Access-Control-Allow-Origin  https   my-domain tdl       lt  IfModule gt    Solution 2  set headers the correct way  If you set this into the response header of the requested file  you will allow everyone to access the ressources   Access-Control-Allow-Origin       OR  Access-Control-Allow-Origin   http   www my-domain com   Peace and code

User · Answer

You must have got the idea why you are getting this problem after going through above answers   self send header  Access-Control-Allow-Origin          You just have to add the above line in your server side

User · Answer

in your ajax request  adding   dataType   jsonp     after line    type   GET     should solve this problem      hope this help you

User · Answer

You have to modify your server side code  as given below  public class CorsResponseFilter implements ContainerResponseFilter    Override public void filter ContainerRequestContext requestContext    ContainerResponseContext responseContext      throws IOException           responseContext getHeaders   add  Access-Control-Allow-Origin                responseContext getHeaders   add  Access-Control-Allow-Methods    GET  POST  DELETE  PUT

[jquery] CORS header 'Access-Control-Allow-Origin' missing

Examples related to jquery

Examples related to ajax

Examples related to json

Examples related to cors

Examples related to jsonp