我的引导glyphicons显示在其他浏览器,但我得到谷歌浏览器这个错误:请求的资源上是否存在“Access-Control-Allow-Origin”头?
从原点“http://d37p52igaahgm9.cloudfront.net”字体已 加载由跨来源资源共享政策阻止:无 “访问 - “Control-Allow-Origin”标题出现在请求的 资源中。原因'http://www.anthonygalli.com'因此不允许 允许访问。
的错误仍然存在,尽管尝试:
application_controller.rb
before_action :set_cors
def set_cors
headers['Access-Control-Allow-Origin'] = '*'
headers['Access-Control-Request-Method'] = '*'
end
application.rb中
config.middleware.insert_before 0, "Rack::Cors" do
allow do
origins '*'
resource '*', :headers => :any, :methods => [:get, :post, :options]
end
end
config.action_dispatch.default_headers = {
'Access-Control-Allow-Origin' => '*',
'Access-Control-Request-Method' => '*'
}
CORS配置编辑器
<?xml version="1.0" encoding="UTF-8"?>
<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
<CORSRule>
<AllowedOrigin>https://www.anthonygalli.com</AllowedOrigin>
<AllowedMethod>GET</AllowedMethod>
<MaxAgeSeconds>3000</MaxAgeSeconds>
<AllowedHeader>Content-*</AllowedHeader>
<AllowedHeader>Host</AllowedHeader>
</CORSRule>
<CORSRule>
<AllowedOrigin>https://anthonygalli.com</AllowedOrigin>
<AllowedMethod>GET</AllowedMethod>
<MaxAgeSeconds>3000</MaxAgeSeconds>
<AllowedHeader>Content-*</AllowedHeader>
<AllowedHeader>Host</AllowedHeader>
</CORSRule>
</CORSConfiguration>
参考文献
- Amazon S3 CORS (Cross-Origin Resource Sharing) and Firefox cross-domain font loading
- Font from origin has been blocked from loading by Cross-Origin Resource Sharing policy