<p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">ajax跨域访问是一个老问题了,解决方法很多,比较常用的是<span style="color: rgb(255, 0, 0);">JSONP方法,JSONP方法是一种非官方方法,而且这种方法只支持GET方式,不如POST方式安全。</span></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">即使使用jquery的jsonp方法,type设为POST,也会自动变为GET。</p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">官方问题说明:<br/></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">“script”: Evaluates the response as JavaScript and returns it as plain text. Disables caching by appending a query string parameter, “_=[TIMESTAMP]“, to the URL unless the cache option is set to true.<span style="color: rgb(255, 0, 0);">Note: This will turn POSTs into GETs for remote-domain requests.</span></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">如果跨域使用POST方式,可以使用创建一个隐藏的iframe来实现,与ajax上传图片原理一样,但这样会比较麻烦。</p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);"><strong>因此,通过设置<span style="color: rgb(255, 0, 0);">Access-Control-Allow-Origin来实现跨域访问比较简单。</span></strong></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">例如:客户端的域名是<strong>www.client.com</strong>,而请求的域名是<strong>www.server.com</strong><br/></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">如果直接使用ajax访问,会有以下错误<br/></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">XMLHttpRequest cannot load http://www.server.com/server.php. No 'Access-Control-Allow-Origin' header is present on the requested resource.<span style="color: rgb(255, 0, 0);">Origin 'http://www.client.com' is therefore not allowed access.</span></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);"><strong>在被请求的Response header中加入</strong></p><pre class="brush:as3;toolbar:false"> // 指定允许其他域名访问 原来以为设置这个就可以了,原来缺少下面2,3两行代码
header('Access-Control-Allow-Origin:*'); <br/> <br/> <br/>
// 响应类型 <br/>
header('Access-Control-Allow-Methods:POST');
// 响应头设置
header('Access-Control-Allow-Headers:x-requested-with,content-type'); <br/></pre><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);">就可以实现ajax POST跨域访问了。</p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);"><strong>代码如下:</strong><br/></p><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);"><strong>client.html</strong> 路径:<a href="http://www.client.com/client.html">http://www.client.com/client.html</a></p><pre class="brush:as3;toolbar:false"> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html;charset=utf-8">
<title> 跨域测试 </title>
<script src="//code.jquery.com/jquery-1.11.3.min.js"></script>
</head>
<body>
<div id="show"></div>
<script type="text/javascript">
$.post("http://www.server.com/server.php",{name:"fdipzone",gender:"male"})
.done(function(data){
document.getElementById("show").innerHTML = data.name + ' ' + data.gender;
});
</script>
</body>
</html> <br/></pre><p style="margin: 10px auto; font-family: "PingFang SC", "Microsoft YaHei", "Helvetica Neue", Helvetica, Arial, sans-serif; text-wrap: wrap; background-color: rgb(255, 255, 255);"><strong>server.php</strong> 路径:http://www.server.com/server.php</p><pre class="brush:as3;toolbar:false"> <?php
$ret = array(
'name' => isset($_POST['name'])? $_POST['name'] : '',
'gender' => isset($_POST['gender'])? $_POST['gender'] : ''
);
header('content-type:application:json;charset=utf8');
header('Access-Control-Allow-Origin:*');
header('Access-Control-Allow-Methods:POST');
header('Access-Control-Allow-Headers:x-requested-with,content-type');
echo json_encode($ret);
?> <br/></pre><pre class="brush:php;toolbar:false">Access-Control-Allow-Origin:* 表示允许任何域名跨域访问
如果需要指定某域名才允许跨域访问,只需把Access-Control-Allow-Origin:*改为Access-Control-Allow-Origin:允许的域名
例如:header('Access-Control-Allow-Origin:http://www.client.com');
如果需要设置多个域名允许访问,这里需要用php处理一下
例如允许 www.client.com 与 www.client2.com 可以跨域访问
server.php 修改为<br/><br/> <?php
$ret = array(
'name' => isset($_POST['name'])? $_POST['name'] : '',
'gender' => isset($_POST['gender'])? $_POST['gender'] : ''
);
header('content-type:application:json;charset=utf8');
$origin = isset($_SERVER['HTTP_ORIGIN'])? $_SERVER['HTTP_ORIGIN'] : '';
$allow_origin = array(
'http://www.client.com',
'http://www.client2.com'
);
if(in_array($origin, $allow_origin)){
header('Access-Control-Allow-Origin:'.$origin);
header('Access-Control-Allow-Methods:POST');
header('Access-Control-Allow-Headers:x-requested-with,content-type');
}
echo json_encode($ret);
?> <br/></pre><p>来源:https://www.cnblogs.com/wawahaha/p/4799686.html</p>
相关文章
#没有设置高宽参数,将以原图输出)