beego 跨域

原创

onejson 2023-06-13 14:52:56 博主文章分类：go ©著作权

文章标签 Access 跨域字段 文章分类 HarmonyOS 后端开发

©著作权归作者所有：来自51CTO博客作者onejson的原创作品，请联系作者获取转载授权，否则将追究法律责任

网上资料大部分跨域设置
引入插件 github.com/astaxie/beego/plugins/cors

// 允许跨域
	beego.InsertFilter("*", beego.BeforeRouter, cors.Allow(&cors.Options{
		AllowAllOrigins:  true,
		AllowMethods:     []string{"GET", "POST", "PUT", "DELETE", "OPTIONS"},
		AllowHeaders:     []string{"Origin", "Authorization", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers", "Content-Type"},
		ExposeHeaders:    []string{"Content-Length", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers", "Content-Type"},
		AllowCredentials: true,
	}))

前端是vue-element-admin,预请求 options时，还是报跨域错误

Access to XMLHttpRequest at 'http://127.0.0.1:1003/user/info?token=admin-token' from origin 'http://localhost:9527' has been blocked by CORS policy: Request header field x-token is not allowed by Access-Control-Allow-Headers in preflight response.

仔细看提示，Request header field x-token is not allowed ,请求头里的字段 x-token 是不允许的，所以我们需要在 AllowHeaders 加上 x-token字段

beego.InsertFilter("*", beego.BeforeRouter, cors.Allow(&cors.Options{
		AllowAllOrigins:  true,
		AllowMethods:     []string{"GET", "POST", "PUT", "DELETE", "OPTIONS"},
		AllowHeaders:     []string{"Origin", "Authorization", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers", "Content-Type","x-token"},
		ExposeHeaders:    []string{"Content-Length", "Access-Control-Allow-Origin", "Access-Control-Allow-Headers", "Content-Type"},
		AllowCredentials: true,
	}))

问题解决