CORS 与 POSTMAN [英] CORS with POSTMAN
问题描述
这个话题被问了好几次了,还是没明白:
This subject has been asked a couple of time, but I still don't understand something:
当我阅读有关
没有Access-Control-Allow-Origin"标头
No 'Access-Control-Allow-Origin' header
问题,它说应该在请求的服务器上设置一个设置以允许跨域:add_header 'Access-Control-Allow-Origin' '*';
.
issue, it says a setting should be set on the requested server in order to allow cross domain: add_header 'Access-Control-Allow-Origin' '*';
.
但是,请告诉我为什么当从 postman(它是一个客户端)询问时,它的工作就像一个魅力,而我收到了来自请求的服务器的响应?
But, please tell me why when asking from postman (which is a client), It's working like a charm and I have a response from the requested server?
谢谢
推荐答案
正如@Musa 评论的那样,原因似乎是:
As @Musa comments it, it seems that the reason is that:
Postman 不关心 SOP,它是开发工具而不是浏览器
Postman doesn't care about SOP, it's a dev tool not a browser
顺便说一下,这是一个 chrome 扩展程序 以使其在您的浏览器上运行(这个适用于 chrome,但您可以找到 FF 或 Safari).
By the way here's a chrome extension in order to make it work on your browser (this one is for chrome, but you can find either for FF or Safari).
如果您想了解有关跨源的更多信息,请查看此处> 以及为什么它适用于扩展.
Check here if you want to learn more about Cross-Origin and why it's working for extensions.
这篇关于CORS 与 POSTMAN的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!