Short answer: Make sure the request URL in your code isn’t missing a trailing slash.
That missing-a-trailing slash problem is the most-common cause of the error cited in the question.
However, that’s not the only cause — it’s just the most common one. Read on for more details.
Longer answer:
When you see this error, it means your code is triggering your browser to send a CORS preflight OPTIONS
request, and the server’s responding with a 3xx
redirect. To avoid the error, your request needs to get a 2xx
success response instead.
You may be able to adjust your code to avoid triggering the browser to send the OPTIONS
request.
As far as what all’s going on in this case, it’s important to know browsers do a CORS preflight if:
- the request method is anything other than
GET
, HEAD
, or POST
- you’ve set custom request headers other than
Accept
, Accept-Language
, Content-Language
, Content-Type
, DPR
, Downlink
, Save-Data
, Viewport-Width
, or Width
- the
Content-Type
request header has a value other than application/x-www-form-urlencoded
, multipart/form-data
, or text/plain
If you can’t change your code to avoid need for browsers to do a preflight, then another option is:
- Examine the URL in the
Location
response header in the response to the OPTIONS
request.
- Change your code to make the request to that other URL directly instead.
The difference between the URLs might be something as simple as a trailing slash in the path — for example, you may need to change the URL in your code to http://localhost/api/auth/login/
(notice the trailing slash) rather than http://localhost/api/auth/login
(no trailing slash).
You can use the Network pane in browser devtools to examine the response to the OPTIONS
request and to find the redirect URL in the value of the Location
response header.
与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…