Unable to make CORS request in ExtJS 6










0















So, I have my localhost with a page, which sends request to a remote site. I try to do it like so:



Ext.Ajax.cors = true;
Ext.Ajax.request(
 url: "http://remoteaddress.com", 
 method: "GET",
 headers: 
 "Access-Control-Allow-Origin": "*"
 ,
 cors: true,
 useDefaultXhrHeader: false,
 success: function (result, request) 
 console.log("success!!!");
 
);


So, I followed dozens of threads and set these parameters - cors, useDefaultXhrHeader etc, but to no avail.



However, if I build the same request in postman (request to the same remoteaddress.com), then it's ok.



So, what I'm doing wrong and how can I fix it?






ajax extjs cors







share|improve this question

















  • 1





    As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

    – Jacobian
    Nov 13 '18 at 8:22






  • 1





    Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

    – sideshowbarker
    Nov 13 '18 at 22:48















0















So, I have my localhost with a page, which sends request to a remote site. I try to do it like so:



Ext.Ajax.cors = true;
Ext.Ajax.request(
 url: "http://remoteaddress.com", 
 method: "GET",
 headers: 
 "Access-Control-Allow-Origin": "*"
 ,
 cors: true,
 useDefaultXhrHeader: false,
 success: function (result, request) 
 console.log("success!!!");
 
);


So, I followed dozens of threads and set these parameters - cors, useDefaultXhrHeader etc, but to no avail.



However, if I build the same request in postman (request to the same remoteaddress.com), then it's ok.



So, what I'm doing wrong and how can I fix it?






ajax extjs cors







share|improve this question

















  • 1





    As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

    – Jacobian
    Nov 13 '18 at 8:22






  • 1





    Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

    – sideshowbarker
    Nov 13 '18 at 22:48













0












0








0








So, I have my localhost with a page, which sends request to a remote site. I try to do it like so:



Ext.Ajax.cors = true;
Ext.Ajax.request(
 url: "http://remoteaddress.com", 
 method: "GET",
 headers: 
 "Access-Control-Allow-Origin": "*"
 ,
 cors: true,
 useDefaultXhrHeader: false,
 success: function (result, request) 
 console.log("success!!!");
 
);


So, I followed dozens of threads and set these parameters - cors, useDefaultXhrHeader etc, but to no avail.



However, if I build the same request in postman (request to the same remoteaddress.com), then it's ok.



So, what I'm doing wrong and how can I fix it?






ajax extjs cors







share|improve this question














So, I have my localhost with a page, which sends request to a remote site. I try to do it like so:



Ext.Ajax.cors = true;
Ext.Ajax.request(
 url: "http://remoteaddress.com", 
 method: "GET",
 headers: 
 "Access-Control-Allow-Origin": "*"
 ,
 cors: true,
 useDefaultXhrHeader: false,
 success: function (result, request) 
 console.log("success!!!");
 
);


So, I followed dozens of threads and set these parameters - cors, useDefaultXhrHeader etc, but to no avail.



However, if I build the same request in postman (request to the same remoteaddress.com), then it's ok.



So, what I'm doing wrong and how can I fix it?






ajax extjs cors




ajax extjs cors






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Nov 13 '18 at 8:05









JacobianJacobian

2,018951120




2,018951120







  • 1





    As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

    – Jacobian
    Nov 13 '18 at 8:22






  • 1





    Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

    – sideshowbarker
    Nov 13 '18 at 22:48












  • 1





    As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

    – Jacobian
    Nov 13 '18 at 8:22






  • 1





    Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

    – sideshowbarker
    Nov 13 '18 at 22:48







1




1





As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

– Jacobian
Nov 13 '18 at 8:22





As I see, the whole problem is with OPTIONS method, but I'm not sure how can I switch to GET request. I thought, cors: true and useDefaultXhrHeader: false should do the trick, but they do not.

– Jacobian
Nov 13 '18 at 8:22




1




1





Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

– sideshowbarker
Nov 13 '18 at 22:48





Remove ` headers: "Access-Control-Allow-Origin": "*" ` from your frontend code. Access-Control-Allow-Origin is a response header, not a request header. Trying to set it as request header is what’s triggering the browser to do that OPTIONS request.

– sideshowbarker
Nov 13 '18 at 22:48












2 Answers
2






active

oldest

votes


















1














The request with the OPTIONS-method is a preflight request.



From msdna:




A CORS preflight request is a CORS request that checks to see if the
CORS protocol is understood.



It is an OPTIONS request, using three HTTP request headers:
Access-Control-Request-Method, Access-Control-Request-Headers, and the
Origin header.



A preflight request is automatically issued by a browser, when needed.
In normal cases, front-end developers don't need to craft such
requests themselves.




The webserver has to answer it with the headers to allow the browser to do the actual request.



HTTP/1.1 200 OK
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: localhost
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 86400





share|improve this answer
































    -1














    Here is a quick fix for that



    Open terminal and run this code



    open -n -a /Applications/Google Chrome.app/Contents/MacOS/Google Chrome --args --user-data-dir="/tmp/chrome_dev_sess_1" --disable-web-security


    Then just use that new chrome window for development and once you host your website somewhere it will not cause an issue anymore



    *note this is MacOs chrome *






    share|improve this answer






















      Your Answer






      StackExchange.ifUsing("editor", function ()
      StackExchange.using("externalEditor", function ()
      StackExchange.using("snippets", function ()
      StackExchange.snippets.init();
      );
      );
      , "code-snippets");

      StackExchange.ready(function()
      var channelOptions =
      tags: "".split(" "),
      id: "1"
      ;
      initTagRenderer("".split(" "), "".split(" "), channelOptions);

      StackExchange.using("externalEditor", function()
      // Have to fire editor after snippets, if snippets enabled
      if (StackExchange.settings.snippets.snippetsEnabled)
      StackExchange.using("snippets", function()
      createEditor();
      );

      else
      createEditor();

      );

      function createEditor()
      StackExchange.prepareEditor(
      heartbeatType: 'answer',
      autoActivateHeartbeat: false,
      convertImagesToLinks: true,
      noModals: true,
      showLowRepImageUploadWarning: true,
      reputationToPostImages: 10,
      bindNavPrevention: true,
      postfix: "",
      imageUploader:
      brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
      contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
      allowUrls: true
      ,
      onDemand: true,
      discardSelector: ".discard-answer"
      ,immediatelyShowMarkdownHelp:true
      );



      );













      draft saved

      draft discarded


















      StackExchange.ready(
      function ()
      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53276397%2funable-to-make-cors-request-in-extjs-6%23new-answer', 'question_page');

      );

      Post as a guest















      Required, but never shown

























      2 Answers
      2






      active

      oldest

      votes








      2 Answers
      2






      active

      oldest

      votes









      active

      oldest

      votes






      active

      oldest

      votes









      1














      The request with the OPTIONS-method is a preflight request.



      From msdna:




      A CORS preflight request is a CORS request that checks to see if the
      CORS protocol is understood.



      It is an OPTIONS request, using three HTTP request headers:
      Access-Control-Request-Method, Access-Control-Request-Headers, and the
      Origin header.



      A preflight request is automatically issued by a browser, when needed.
      In normal cases, front-end developers don't need to craft such
      requests themselves.




      The webserver has to answer it with the headers to allow the browser to do the actual request.



      HTTP/1.1 200 OK
      Content-Length: 0
      Connection: keep-alive
      Access-Control-Allow-Origin: localhost
      Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
      Access-Control-Max-Age: 86400





      share|improve this answer





























        1














        The request with the OPTIONS-method is a preflight request.



        From msdna:




        A CORS preflight request is a CORS request that checks to see if the
        CORS protocol is understood.



        It is an OPTIONS request, using three HTTP request headers:
        Access-Control-Request-Method, Access-Control-Request-Headers, and the
        Origin header.



        A preflight request is automatically issued by a browser, when needed.
        In normal cases, front-end developers don't need to craft such
        requests themselves.




        The webserver has to answer it with the headers to allow the browser to do the actual request.



        HTTP/1.1 200 OK
        Content-Length: 0
        Connection: keep-alive
        Access-Control-Allow-Origin: localhost
        Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
        Access-Control-Max-Age: 86400





        share|improve this answer



























          1












          1








          1







          The request with the OPTIONS-method is a preflight request.



          From msdna:




          A CORS preflight request is a CORS request that checks to see if the
          CORS protocol is understood.



          It is an OPTIONS request, using three HTTP request headers:
          Access-Control-Request-Method, Access-Control-Request-Headers, and the
          Origin header.



          A preflight request is automatically issued by a browser, when needed.
          In normal cases, front-end developers don't need to craft such
          requests themselves.




          The webserver has to answer it with the headers to allow the browser to do the actual request.



          HTTP/1.1 200 OK
          Content-Length: 0
          Connection: keep-alive
          Access-Control-Allow-Origin: localhost
          Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
          Access-Control-Max-Age: 86400





          share|improve this answer















          The request with the OPTIONS-method is a preflight request.



          From msdna:




          A CORS preflight request is a CORS request that checks to see if the
          CORS protocol is understood.



          It is an OPTIONS request, using three HTTP request headers:
          Access-Control-Request-Method, Access-Control-Request-Headers, and the
          Origin header.



          A preflight request is automatically issued by a browser, when needed.
          In normal cases, front-end developers don't need to craft such
          requests themselves.




          The webserver has to answer it with the headers to allow the browser to do the actual request.



          HTTP/1.1 200 OK
          Content-Length: 0
          Connection: keep-alive
          Access-Control-Allow-Origin: localhost
          Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
          Access-Control-Max-Age: 86400






          share|improve this answer














          share|improve this answer



          share|improve this answer








          edited Nov 13 '18 at 15:09

























          answered Nov 13 '18 at 15:02









          And-yAnd-y

          1,33921729




          1,33921729























              -1














              Here is a quick fix for that



              Open terminal and run this code



              open -n -a /Applications/Google Chrome.app/Contents/MacOS/Google Chrome --args --user-data-dir="/tmp/chrome_dev_sess_1" --disable-web-security


              Then just use that new chrome window for development and once you host your website somewhere it will not cause an issue anymore



              *note this is MacOs chrome *






              share|improve this answer



























                -1














                Here is a quick fix for that



                Open terminal and run this code



                open -n -a /Applications/Google Chrome.app/Contents/MacOS/Google Chrome --args --user-data-dir="/tmp/chrome_dev_sess_1" --disable-web-security


                Then just use that new chrome window for development and once you host your website somewhere it will not cause an issue anymore



                *note this is MacOs chrome *






                share|improve this answer

























                  -1












                  -1








                  -1







                  Here is a quick fix for that



                  Open terminal and run this code



                  open -n -a /Applications/Google Chrome.app/Contents/MacOS/Google Chrome --args --user-data-dir="/tmp/chrome_dev_sess_1" --disable-web-security


                  Then just use that new chrome window for development and once you host your website somewhere it will not cause an issue anymore



                  *note this is MacOs chrome *






                  share|improve this answer













                  Here is a quick fix for that



                  Open terminal and run this code



                  open -n -a /Applications/Google Chrome.app/Contents/MacOS/Google Chrome --args --user-data-dir="/tmp/chrome_dev_sess_1" --disable-web-security


                  Then just use that new chrome window for development and once you host your website somewhere it will not cause an issue anymore



                  *note this is MacOs chrome *







                  share|improve this answer












                  share|improve this answer



                  share|improve this answer










                  answered Nov 13 '18 at 12:23









                  SundeepSundeep

                  40012




                  40012



























                      draft saved

                      draft discarded
















































                      Thanks for contributing an answer to Stack Overflow!


                      • Please be sure to answer the question. Provide details and share your research!

                      But avoid


                      • Asking for help, clarification, or responding to other answers.

                      • Making statements based on opinion; back them up with references or personal experience.

                      To learn more, see our tips on writing great answers.




                      draft saved


                      draft discarded














                      StackExchange.ready(
                      function ()
                      StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f53276397%2funable-to-make-cors-request-in-extjs-6%23new-answer', 'question_page');

                      );

                      Post as a guest















                      Required, but never shown





















































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown

































                      Required, but never shown














                      Required, but never shown












                      Required, but never shown







                      Required, but never shown







                      -

                      這個網誌中的熱門文章

                      Barbados

                      圖片
                      For other uses, see Barbados (disambiguation). Not to be confused with Barbuda. Coordinates: 13°10′N 59°33′W  /  13.167°N 59.550°W  / 13.167; -59.550 Barbados Flag Coat of arms Motto:  "Pride and Industry" Anthem:  In Plenty and In Time of Need Capital and largest city Bridgetown 13°06′N 59°37′W  /  13.100°N 59.617°W  / 13.100; -59.617 Official languages English Recognised regional languages Bajan Creole Ethnic groups (est. 2010 [1] ) 92.4% black 3.1% multiracial 2.7% white 1.3% East Indian 0.5% other/unspecified Religion 75.6% Christian 2.5% other 20.6% none 1.2% unspecified [1] Demonym(s) Barbadian Bajan (colloquial) Government Unitary parliamentary constitutional monarchy • Monarch Elizabeth II •  Governor-General Dame Sandra Mason • Prime Minister Mia Mottley Legislature Parliament • Upper house Senate • Lower house House of Assembly Independence • From the United Kingdom 30 November 1966 Area • Total 439 km 2 (169 sq mi) (183rd) • Water (%) Negligib
                      閱讀完整內容

                      How to read a connectionString WITH PROVIDER in .NET Core?

                      圖片
                      6 I added .AddJsonFile("Connections.json", optional: true, reloadOnChange: true) in public Startup(IHostingEnvironment env) Connections.json contains: "ConnectionStrings": "DefaultConnection": "Server=(localdb)\mssqllocaldb;Database=DATABASE;Trusted_Connection=True;MultipleActiveResultSets=true", "COR-W81-101": "Data Source=DATASOURCE;Initial Catalog=P61_CAFM_Basic;User Id=USERID;Password=PASSWORD;Persist Security Info=False;MultipleActiveResultSets=False;Packet Size=4096;", "COR-W81-100": "Data Source=DATASOURCE;Initial Catalog=Post_PS;User Id=USERID;Password=PASSWORD;Persist Security Info=False;MultipleActiveResultSets=False;Packet Size=4096;", "MSEDGEWIN10": "Data Source=DATASOURCE; Initial Catalog=COR_Basic; Persist Security Info=False;Integrated Security=true;MultipleActiveResultSets=False;Packet Size=4096;Application Name="COR_Basic"", "server&qu
                      閱讀完整內容

                      Node.js Script on GitHub Pages or Amazon S3

                      圖片
                      0 I'm wondering if I can run a Node.js script in my Jekyll page from GitHub Pages or Amazon S3? I think it can't run on GitHub Pages since it doesn't support server side code. Not too sure. The code is below: var Airtable = require('airtable'); var base = new Airtable(apiKey: 'YOUR_API_KEY').base('appAnZVyYqusNPV5Q'); base('Invitee list').select( // Selecting the first 3 records in Complete list: maxRecords: 3, view: "Complete list" ).eachPage(function page(records, fetchNextPage) // This function (`page`) will get called for each page of records. records.forEach(function(record) console.log('Retrieved', record.get('Email')); ); // To fetch the next page of records, call `fetchNextPage`. // If there are more records, `page` will get called again. // If there are no more records, `done` will get called. fetchNextPage(); , function done(err) if (err) console.error(err); return; ); node.js
                      閱讀完整內容