What are the steps to creating a basic CORS request?

Question

What are the steps to creating a basic CORS request?

THE SCENARIO:

I'm currently developing an AngularJs app that requires making a CORS request to fetch data from an api on a different domain.

The api I'm working with outputs a simple json structure for testing purposes:

[{"id":0,"name":"First"},{"id":1,"name":"Second"},{"id":2,"name":"Third"}]

My goal is to retrieve this data and display it within my app.

$HTTP CALL ISSUE:

When making the $http call, I encountered the following error related to the api being on a different domain:

No 'Access-Control-Allow-Origin' header is present on the requested resource

CORS REQUEST - THE IMPLEMENTATION:

// Function to create the XHR object.
$scope.createCORSRequest = function(method, url)
{
    var xhr = new XMLHttpRequest();

    if ("withCredentials" in xhr) 
    {
        // XHR for Chrome/Firefox/Opera/Safari.
        xhr.open(method, url, true);
    } 
    else if (typeof XDomainRequest != "undefined") 
    {
        // XDomainRequest for IE.
        xhr = new XDomainRequest();
        xhr.open(method, url);
    } 
    else 
    {
        // CORS not supported.
        xhr = null;
    }

    return xhr;
}

// Helper method to parse the title tag from the response.
$scope.getTitle = function(text)
{
    return text.match('<title>(.*)?</title>')[1];
}

// Perform the actual CORS request.
$scope.makeCorsRequest = function()
{
    var url = 'http://DOMAIN.COM/main/json_export_test';

    var xhr = $scope.createCORSRequest('GET', url);

    console.log('----- xhr -----');
    console.log(xhr);

    if (!xhr) 
    {
        alert('CORS not supported');
        return;
    }

    // Response handlers.
    xhr.onload = function() 
    {
        var text = xhr.responseText;
        var title = $scope.getTitle(text);
        alert('Response from CORS request to ' + url + ': ' + title);
    };

    xhr.onerror = function() 
    {
        alert('Oops, there was an error making the request.');
    };

    xhr.send();
}

Upon running the makeCorsRequest function, the xhr.onerror alert is triggered, but I am unsure of the reason behind this issue.

THE API FUNCTIONALITY:

Below is the simple php function used within the api for testing purposes:

public function json_export_test()
{
    $data = array(
        array(
            "id" => 0,
            "name" => "First"
        ),
        array(
            "id" => 1,
            "name" => "Second"
        ),
        array(
            "id" => 2,
            "name" => "Third"
        )
    );

    echo json_encode($data);
}

THE QUERY:

How can I successfully execute a CORS request?

EDIT - THE RESOLUTION:

Following the proposed solution, here's how the api code looks after modification:

public function json_export_test()
{
    header('Access-Control-Allow-Origin: *');

    $data = array(
        array(
            "id" => 0,
            "name" => "First"
        ),
        array(
            "id" => 1,
            "name" => "Second"
        ),
        array(
            "id" => 2,
            "name" => "Third"
        )
    );

    echo json_encode($data);
}

javascript angularjs http cors ionic-framework

Answer 1

Answer №1

Basically: To send a request with XMLHttpRequest, just make the usual call and let the browser take care of the rest. (Except for outdated browsers that may not support CORS or require the use of XDomainRequest instead of XMLHttpRequest — but it seems like you already know about this).

The error message you're seeing indicates that there's no CORS response, so your JavaScript doesn't have permission to access data from the other site.

To solve this, you need to add Access-Control-Allow-Origin: * (or a more specific value) in the HTTP response to fulfill the cross-origin request.

Answer 2

Basically: To send a request with XMLHttpRequest, just make the usual call and let the browser take care of the rest. (Except for outdated browsers that may not support CORS or require the use of XDomainRequest instead of XMLHttpRequest — but it seems like you already know about this).

The error message you're seeing indicates that there's no CORS response, so your JavaScript doesn't have permission to access data from the other site.

To solve this, you need to add Access-Control-Allow-Origin: * (or a more specific value) in the HTTP response to fulfill the cross-origin request.

What are the steps to creating a basic CORS request?

Answer №1

Similar questions

Randomizing the JSON loop on every page refresh

Having issues with setInterval function when restricting the number of MySQL rows

Event triggered when a Socket.IO connection is disconnected

Do the two types of updater functions for setState in React hold the same value?

Enhancing an existing Express project with socket.io (plus a side of React)

Setting the default value in setState in React Native allows you to initialize state

Incorporating Keyboard Features into Buttons

Node.js with ejs supports the inclusion of partials, but sometimes struggles to locate the variable that has been defined in the partial file

Populate a JSON table in React with checkboxes and automatically mark them based on the JSON data

Tips for stopping the entire webpage from scrolling in Vuetify

Function for Duplicating jQuery Events

Three.js - Troubleshooting: Imported OBJ model displaying partially transparent triangles

Issue with loading controllers in route files [Node.js]

I am interested in changing the sitecore search facet filter from allowing multiple selections to only allowing a single

What is the best way to incorporate this locale variable into the primary script?

Adjusting the opacity of the background image in the section - focus solely on the background

Collect all chosen items within a form along with their concealed inputs in preparation for submission

Show Data on the Right-hand Side

Having trouble seeing the output on the webpage after entering the information

Strange behavior in Angular's http response