CORS 与邮递员 [英] CORS with POSTMAN
问题描述
这个主题已经被问过几次了,但我还是不明白:
This subject has been asked a couple of time, but I still don't understand something:
当我阅读有关
没有Access-Control-Allow-Origin"标头
No 'Access-Control-Allow-Origin' header
问题,它说应该在请求的服务器上设置一个设置以允许跨域:add_header 'Access-Control-Allow-Origin' '*';
.
issue, it says a setting should be set on the requested server in order to allow cross domain: add_header 'Access-Control-Allow-Origin' '*';
.
但是,请告诉我为什么当从 邮递员(它是一个客户端)询问时,它就像一个魅力一样工作并且我得到了请求的服务器的响应?
But, please tell me why when asking from postman (which is a client), It's working like a charm and I have a response from the requested server?
谢谢
推荐答案
正如@Musa 所评论的,原因似乎是:
As @Musa comments it, it seems that the reason is that:
Postman 不关心 SOP,它是一个开发工具而不是浏览器
Postman doesn't care about SOP, it's a dev tool not a browser
顺便说一下,这是一个 chrome 扩展 以使其在您的浏览器上运行(这个是针对 chrome 的,但您可以在 FF 或 Safari 中找到).
By the way here's a chrome extension in order to make it work on your browser (this one is for chrome, but you can find either for FF or Safari).
如果您想了解有关Cross-Origin此处> 以及为什么它适用于扩展.
Check here if you want to learn more about Cross-Origin and why it's working for extensions.
这篇关于CORS 与邮递员的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!