標籤:
背景: 想實現跨域去調用介面, 然後同時支援下次調用,能夠帶cookie資訊過來,同時支援來自多個源頭的網域名稱的跨域調用。
1.這樣支援來自所有網域名稱的跨域調用:
不支援跨域是,瀏覽器報錯:
在api介面服務端加上相應的協議頭:
header("Access-Control-Allow-Origin: *‘,); header(‘Access-Control-Allow-Headers: X-Requested-With, Content-Type‘);
但是,這樣的api介面,不支援cookie.
2.如果想支援cookie, 需要加上
header(‘Access-Control-Allow-Credentials: true‘);
但是這樣的話,前面服務端設定的這個頭,瀏覽器就會報錯。說是access-control-allow-origin頭不能 用 * 這個萬用字元。
header("Access-Control-Allow-Origin: *‘,);
瀏覽器報錯如:
必須改成具體的某個網域名稱。 但是,我們的api又希望支援來自許多不同網域名稱的跨域訪問,怎麼辦呢,這時候,在服務端做個動態判斷處理就ok了。
<?php$ret = array( ‘name‘ => isset($_POST[‘name‘])? $_POST[‘name‘] : ‘‘, ‘gender‘ => isset($_POST[‘gender‘])? $_POST[‘gender‘] : ‘‘);header(‘content-type:application:json;charset=utf8‘);$origin = isset($_SERVER[‘HTTP_ORIGIN‘])? $_SERVER[‘HTTP_ORIGIN‘] : ‘‘;$allow_origin = array( ‘http://www.client.com‘, ‘http://www.client2.com‘);if(in_array($origin, $allow_origin)){ header(‘Access-Control-Allow-Origin:‘.$origin); header(‘Access-Control-Allow-Methods:POST‘); header(‘Access-Control-Allow-Headers:x-requested-with,content-type‘);}echo json_encode($ret);?>
參考:http://my.oschina.net/blogshi/blog/303758
ajax跨域實現api 介面調用
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
