Reputation: 1289
Allow cors on localhost
I know it has kinda been answered already, but i don't understand how to fix my issue. I'm developing a static website using webpack 4, and i'm having issues when trying to load images (locally and from my online server).
How do you fix the Access to XMLHttpRequest at 'XXX' from origin 'http://localhost:8080' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource error when using webpack? I'm not using express (still learning webpack) and all the answers i find are quite a bit complicated for me and uses custom servers, which i don't..
Is there a simple method to bypass this?
By the way, i'm using <img src="XXX" alt="" crossorigin="anonymous"> with my images. Sometimes it works, sometimes it doesn't.. the articles i've found are way too technical for me at this point..
I've tried to add the following to my webpack.config.dev.js file, but it doesn't work either :
devServer: {
headers: {
'Access-Control-Allow-Origin': '*',
'Access-Control-Allow-Methods': 'GET, POST, PUT, DELETE, PATCH, OPTIONS',
'Access-Control-Allow-Headers': 'X-Requested-With, content-type, Authorization',
},
(...)
}
Upvotes: 8
Views: 25347
Answers (3)
Reputation: 127
This method requires Google Chrome. Quit all Google Chrome windows and execute the following command in your terminal, in any directory:
WINDOWS: Start-Process -FilePath "chrome.exe" -ArgumentList "--user-data-dir=$env:TEMP\chrome-XXXXXXXX"
MAC: open -a "Google Chrome" --args --user-data-dir=$(mktemp -d -t 'chrome-XXXXXXXX') --disable-web-security
In the new Google Chrome window that appears, search http://localhost:8080. (This number defaults to 8080, but if you have multiple ports open, use the port number webpack prints to the terminal.)
After you are done testing, quit Google Chrome to return to your normal security settings.
Upvotes: 0
Reputation: 992
You could try to use JSONP, but it's kinda of a hack and it isn't allowed on every API
Upvotes: 1
Reputation: 425
I think your images loaded from your online server cause the CORS warning and your webpack conf has nothing to do with it.
If you're using Chrome you can bypass CORS by using an extension like this or using Chrome's --disable-web-security argument explained as here
Upvotes: 11
Related Questions
- CORS - localhost as allowed origin in production
- Why does my http://localhost CORS origin not work?
- CORS issue when calling a localhost API hosted on one port from another port
- How to tackle Cors issue on local system?
- localhost, Cross-Origin Request Blocked , CORS header ‘Access-Control-Allow-Origin’ missing
- CORS header ‘Access-Control-Allow-Origin’ missing when making a request to different port on localhost
- How and where to enable CORS?
- CORS when both client & server are localhost?
- Setting up CORS not working
- Dealing with Origin http://localhost is not allowed by Access-Control-Allow-Origin Without CORS header