Reputation:
Laravel API is not allowing access by my front-end with React and Redux
My API is built with Laravel version 5.6 and my front-end uses React with Redux. I'm facing the CORs problem when attempting to connect to the API.
Failed to load http://127.0.0.1:8000/api/login: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:3000' is therefore not allowed access. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.
I tried applying the solutions I found around. I have my Cors middleware class:
public function handle($request, Closure $next)
{
return $next($request)
->header("Access-Control-Allow-Origin", "http://localhost:3000") // Already tried with *
->header("Access-Control-Allow-Methods", "GET, POST, PUT, DELETE")
->header("Access-Control-Allow-Headers", "Content-Type, Authorization");
}
And the Kernel.php:
protected $middlewareGroups = [
...,
'api' => [
...
'cors'
],
];
protected $routeMiddleware = [
...
'cors' => \App\Http\Middleware\Cors::class
];
The routes:
Route::post("/login", "Api\UserController@login");
Route::post("/register", "Api\UserController@register");
Route::prefix("users")->group(function () {
Route::middleware("auth:api")->group(function () {
Route::get("me", "Api\UserController@details");
});
});
And the action:
export function login(data) {
return dispatch => {
return dispatch({
[RSAA]: {
endpoint: "http://127.0.0.1:8000/api/login",
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify(data),
types: [LOGIN, LOGIN_SUCCESS, LOGIN_FAILURE]
}
})
}
}
In the headers of the request, I can see the CORs methods that were sent. So what's missing?
Upvotes: 1
Views: 6052
Answers (3)
Reputation: 133
Please put below lines on top of your routes file that is api.php. It will solve the CORS issue.
use Illuminate\Http\Request;
header('Access-Control-Allow-Origin: *');
//Access-Control-Allow-Origin: *
header('Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE');
header('Access-Control-Allow-Headers: Content-Type, X-Auth-Token, Origin, Authorization');
Upvotes: 2
Reputation: 2087
I had the same issue after deploying my react app with agnostic setup on server.Configuring the laravel with the package laravel-cors didn't help me.I configured the .htaccess of my server as follows:
Header always set Access-Control-Allow-Origin "*"
Header always set Access-Control-Allow-Methods "POST, GET, OPTIONS, DELETE, PUT"
Header always set Access-Control-Max-Age "1000"
Header always set Access-Control-Allow-Headers "x-requested-with, Content-Type, origin, authorization, accept, client-security-token"
Upvotes: 0
Reputation: 827
use this package https://github.com/barryvdh/laravel-cors it's solve your cors problem
Upvotes: 0
Related Questions
- How to overcome the CORS issue in ReactJS
- CORS Issue with React app and Laravel API
- Laravel 8 CORS issue with React Axios
- Laravel CORS with Fruitcake
- What could be the reason I keep getting this CORS error?
- React + Laravel 7 API - CORS issue
- Laravel - React has been blocked by CORS policy
- No Cors headers added to response
- Reactjs with Laravel REST API: No 'Access-Control-Allow-Origin' header is present on the requested resource
- React with Redux Axios get request error issue with laravel 5.2 api server