Ruby on rails 我试图将线索发送到外部API,但CORS策略阻止了我。有什么见解吗?
尝试将线索发送到外部API。以下是我的发帖请求: 以下是我在控制台中的错误代码: CORS策略已阻止从源站访问位于的XMLHttpRequest:请求的资源上不存在“Access Control Allow origin”标头Ruby on rails 我试图将线索发送到外部API,但CORS策略阻止了我。有什么见解吗?,ruby-on-rails,xmlhttprequest,http-headers,http-post,Ruby On Rails,Xmlhttprequest,Http Headers,Http Post,尝试将线索发送到外部API。以下是我的发帖请求: 以下是我在控制台中的错误代码: CORS策略已阻止从源站访问位于的XMLHttpRequest:请求的资源上不存在“Access Control Allow origin”标头 code = RestClient.post('https://platform.esh.ltd/user/login', { headers: { 'x-trackbox-username' =
code = RestClient.post('https://platform.esh.ltd/user/login', {
headers: {
'x-trackbox-username' => 'pass',
'x-trackbox-password' => 'user',
'x-api-key' => 'xx',
'Access-Control-Allow-Origin' => '*',
'Access-Control-Allow-Headers' => "*",
'Access-Control-Allow-Credentials'=> 'true'
},
body: {
'ai' => "xx",
'ci' => "660",
'gi' => "25",
'userip' => request.remote_ip,
'firstname' => reader_params[:first_name],
'lastname' => reader_params[:last_name],
'email' => reader_params[:email],
'password' => reader_params[:password],
'phone' => reader_params[:phone_number],
'prefix' => reader_params[:phone_code]
}
})
puts code
puts ('here')
redirect_to redirect_url
我的标题中还有一个脚本标记,允许api收集更多数据:
<script>gvars={'gi': 25, 'ci': 656, 'wl': 17, 'rd': 4, 'ap': 0,
'ae': 0, 'lg': 'en', 'ai':xx};</script> <script
src='https://cdn.trackbox.guru/trackbot.js?v=4.64'></script>
<div id='gaff'></div>
因此post的签名似乎是RestClient.postrl,payload,headers={},所以将头移到外部花括号{}之外,并将其放在末尾。
此外,车身包装似乎不需要查看车身
试试这个
code = RestClient.post('https://platform.esh.ltd/user/login', {
'ai' => "xx",
'ci' => "660",
'gi' => "25",
'userip' => request.remote_ip,
'firstname' => reader_params[:first_name],
'lastname' => reader_params[:last_name],
'email' => reader_params[:email],
'password' => reader_params[:password],
'phone' => reader_params[:phone_number],
'prefix' => reader_params[:phone_code]
},headers: {
'x-trackbox-username' => 'pass',
'x-trackbox-password' => 'user',
'x-api-key' => 'xx',
'Access-Control-Allow-Origin' => '*',
'Access-Control-Allow-Headers' => "*",
'Access-Control-Allow-Credentials'=> 'true'
})