In recent projects, the backend uses ABP, the front end is react, and the back end is completely detached. Most of these interfaces are called through the WEBAPI layer, and the session is not used in the project. But at the end of the message to make a verification code, the use of the session verification method, so the verification code request and check function on the Web layer. Because of the different domains at the front and back of the test phase, cross-domain request issues are involved. Cross-domain issues can be resolved by means of proxies, but they can also be implemented with simple modifications at the backend. Webapi's cross-domain processing is relatively straightforward and has an official solution. However, the web layer does not generally involve cross-domain, so it has explored its own implementation.
First, common scenarios
Adding a configuration in Web. config
<system.webServer>
Add Allowcrosssite attribute to the controller being accessed
Implement complex request cross-domain access in the Web tier of the ABP