访问控制允许源站不在Apache上工作_Apache_Cors_Same Origin Policy

访问控制允许源站不在Apache上工作

apache cors

访问控制允许源站不在Apache上工作,apache,cors,same-origin-policy,Apache,Cors,Same Origin Policy,当我从本地主机向服务器发送ajax帖子时，我不断遇到跨源问题： OPTIONS http://domain:port/fileuploader/fileupload No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost' is therefore not allowed access. plupload.full.min.js:14 XMLHtt

当我从本地主机向服务器发送ajax帖子时，我不断遇到跨源问题：

OPTIONS http://domain:port/fileuploader/fileupload No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost' is therefore not allowed access. plupload.full.min.js:14
XMLHttpRequest cannot load http://domain:port/fileuploader/fileupload. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost' is therefore not allowed access.

我正在使用apache，因此我添加了此选项以允许一切，但它现在仍在工作：

 Header add Access-Control-Allow-Origin *
 Header add Access-Control-Allow-Headers "SOAPAction, Authorization, username, password, origin, X-Requested-With, Content-Type, XMLHttpRequest"
 Header add Access-Control-Allow-Methods "POST, GET, PUT, DELETE, OPTIONS"
 Header add Access-Control-Allow-Credentials: "true"

“我的浏览器”中的响应标题为：

Request URL:http://domain:port/fileuploader/fileupload
Request Method:OPTIONS
Status Code:200 OK
Request Headersview source
Accept:*/*
Accept-Encoding:gzip,deflate,sdch
Accept-Language:en-US,en;q=0.8,ar;q=0.6
Access-Control-Request-Headers:content-type
Access-Control-Request-Method:POST
Cache-Control:no-cache
Connection:keep-alive
Host:domain:port
Origin:http://localhost
Pragma:no-cache
Referer:http://localhost/omnixuploader/index.html?dDocName=test8818&dDocTitle=test8818&dDocType=SiebelAttachment&dDocAuthor=SADMIN&lan=ara&files=test|jpg:png:txt|220,wwow|pdf:txt:zip|222&rand=19
User-Agent:Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/31.0.1650.63 Safari/537.36
Response Headersview source
Allow:GET, HEAD, POST, TRACE, OPTIONS
Content-Length:0
Date:Thu, 09 Jan 2014 14:39:45 GMT
X-ORACLE-DMS-ECID:a3121f70a766128a:-422d6665:14370f7c3a3:-8000-000000000000057a
X-Powered-By:Servlet/2.5 JSP/2.1

我不明白为什么它不工作？有什么提示吗？

您似乎正在配置

http://localhost

允许其他网站告诉浏览器向其发出请求

您需要告诉

http://domain:port/

这样做

X-Powered-By:Servlet/2.5jsp/2.1

表明您可能正在使用ApacheTomcat。描述了如何配置该服务器。

请尝试先设置标头，然后添加其他标头：

Header set Access-Control-Allow-Origin *

Header add Access-Control-Allow-Headers "SOAPAction, Authorization, username, password, origin, X-Requested-With, Content-Type, XMLHttpRequest"

Header add Access-Control-Allow-Methods "POST, GET, PUT, DELETE, OPTIONS"

Header add Access-Control-Allow-Credentials: "true"

我正在尝试从localhost向我的域发送帖子，以便在域Apache httpd.conf上完成上述配置，并且域具有（Header add Access Control Allow Origin*）然后，看起来您正在配置在端口80上运行的服务器，而不是在您的示例中已替换为

：port

的端口号上运行的服务器。post am post to是7001，我该怎么办？配置在端口7001上运行的服务器，而不是在端口80上运行的服务器。