CORS 与邮递员 [英] CORS with POSTMAN

问题描述

这个主题已经被问过几次了，但我还是不明白:

This subject has been asked a couple of time, but I still don't understand something:

当我阅读有关

没有Access-Control-Allow-Origin"标头

No 'Access-Control-Allow-Origin' header

问题，它说应该在请求的服务器上设置一个设置以允许跨域:add_header 'Access-Control-Allow-Origin' '*';.

issue, it says a setting should be set on the requested server in order to allow cross domain: add_header 'Access-Control-Allow-Origin' '*';.

但是，请告诉我为什么当从 邮递员(它是一个客户端)询问时，它就像一个魅力一样工作并且我得到了请求的服务器的响应?

But, please tell me why when asking from postman (which is a client), It's working like a charm and I have a response from the requested server?

谢谢

推荐答案

正如@Musa 所评论的，原因似乎是:

As @Musa comments it, it seems that the reason is that:

Postman 不关心 SOP，它是一个开发工具而不是浏览器

Postman doesn't care about SOP, it's a dev tool not a browser

顺便说一下，这是一个 chrome 扩展 以使其在您的浏览器上运行(这个是针对 chrome 的，但您可以在 FF 或 Safari 中找到).

By the way here's a chrome extension in order to make it work on your browser (this one is for chrome, but you can find either for FF or Safari).

如果您想了解有关Cross-Origin此处> 以及为什么它适用于扩展.

Check here if you want to learn more about Cross-Origin and why it's working for extensions.

这篇关于CORS 与邮递员的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！