#CORS Policy

8 messages · Page 1 of 1 (latest)

daring gust
#

I encountered an error on my vue electron app "CORS POLICY Error"

and i encountred this bypass post

    webPreferences: {
        webSecurity: false
    }
});``` 

can anyone point out to me why this is bad or its it good to use ? temporarily ? how do i handle cors policy problem
lilac rover
#

You need to make proper cors policy

#

Disabling security features is bad by default

daring gust
#

do you have a suggestion ? i am using axios on sending api request

lilac rover
#

Cors policy comes from web server

#

You cant bypass it from browser

daring gust
#

I think i need to understand more about CORS Policy (silly me for asking it without really knowing)

but anyways this mention does work for me on bypassing cors policy

    webPreferences: {
        webSecurity: false
    }
});```

I might also try this 
```win.webContents.session.webRequest.onBeforeSendHeaders(
    (details, callback) => {
      callback({ requestHeaders: { Origin: '*', ...details.requestHeaders } });
    },
  );

  win.webContents.session.webRequest.onHeadersReceived((details, callback) => {
    callback({
      responseHeaders: {
        'Access-Control-Allow-Origin': ['*'],
        ...details.responseHeaders,
      },
    });
  });```

"Temporarily" until i can imlement proper cors policy
lilac rover
#

Well