GluePear
Reputation: 7725
Laravel API, Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
I have a Laravel API using Laravel Passport (OAuth2 with password grant). When I access an endpoint with Postman, it responds correctly. When I try to access with jQuery, I get this error:
Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
Here is my jQuery code:
$.ajax({
type: 'get',
url: url,
dataType: 'json',
headers: {
'Authorization': 'Bearer ' + access_token
},
success: function(result) {
console.log(result);
},
error: function(error) {
console.log(error)
}
});
Upvotes: 1
Views: 3433
Answers (1)
fransyozef
Reputation: 574
Have you checked your Laravel setup? You need to add CORS on your Laravel end.
Some usefull resources:
https://learninglaravel.net/laravel-51-easily-enable-cors
https://github.com/barryvdh/laravel-cors
Upvotes: 2
Related Questions
- Adding Access-Control-Allow-Origin header response in Laravel 5.3 Passport
- Angular 2 Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
- Request header field Access-Control-Allow-Origin is not allowed by Access-Control-Allow-Headers in preflight response. in CodeIgniter framework
- Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response. (nginx)
- Request header field Content-Type is not allowed by Access-Control-Allow-Headers in flight response
- Error: Request header field Authorization is not allowed by Access-Control-Allow-Headers in preflight response
- Request header field X-CSRF-TOKEN is not allowed by Access-Control-Allow-Headers in preflight response
- Laravel API not working without CSRF token (and Headers globally messing around with me)
- Request header field X-CSRFToken is not allowed by Access-Control-Allow-Headers in preflight response
- Request header field Authorization is not allowed