[GitHub] [apisix-dashboard] coolboywcm opened a new issue, #2783: can not send cross domain requests in apisix/dashboard

["coolboywcm (via GitHub)" <gi...@apache.org>]

coolboywcm opened a new issue, #2783:
URL: https://github.com/apache/apisix-dashboard/issues/2783

   ### Issue description
   
   when I wrote a method on some page to send a cross domain requests
   for example
   pageFile:
   /usr/local/apisix/dashboard/html/index.html
   
   code:
   const xhr = new XMLHttpRequest();
   xhr.open('POST', 'http://127.0.0.100:8000/api/data', true);  
   xhr.setRequestHeader('Content-Type', 'application/json');
   xhr.send(JSON.stringify({ username: 'xxx', password: 'xxx' }));  
   
   deployment page url:
   http://127.0.0.100:9000
   
   response err: Refused to connect to 'http://127.0.0.100:8000/api/data' because it violates the following Content Security Policy directive: "default-src 'self'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.
   
   when I deployment the same page file to Tomcat, visit http://127.0.0.100:8080/index.html
   response  success!
   
   ### Expected behavior
   
   Is the Apisix web container not supply cross domain requests?
   
   
   ### How to Reproduce
   
   1.add my cross domain requests code in file /usr/local/apisix/dashboard/html/index.html 
   2.visit page http://127.0.0.100:9000
   
   ### Screenshots
   
   index.html:
   ![image](https://user-images.githubusercontent.com/31384289/228707075-e27d1032-fbb7-4d33-b7aa-d9ecafc3c184.png)
   
   index.html path:
   ![image](https://user-images.githubusercontent.com/31384289/228707443-fc26500c-cc5a-4ae0-8fb0-654521db308b.png)
   
   
   error:
   ![image](https://user-images.githubusercontent.com/31384289/228707332-8681ded3-62f8-4762-bc65-b3af42ea5259.png)
   
   
   
   ### Environment
   
   - apisix version (3.1.0):
   - OS (CentOS Linux release 7.6.1810):
   - etcd version, if relevant ("etcd_version":"3.4.0"):
   - APISIX Dashboard version, if relevant(3.0.0)
   
   
   ### Additional context
   
   _No response_


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [apisix-dashboard] coolboywcm closed issue #2783: can not send cross domain requests in apisix/dashboard

["coolboywcm (via GitHub)" <gi...@apache.org>]

coolboywcm closed issue #2783: can not send cross domain requests in apisix/dashboard
URL: https://github.com/apache/apisix-dashboard/issues/2783


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org

[GitHub] [apisix-dashboard] coolboywcm commented on issue #2783: can not send cross domain requests in apisix/dashboard

["coolboywcm (via GitHub)" <gi...@apache.org>]

coolboywcm commented on issue #2783:
URL: https://github.com/apache/apisix-dashboard/issues/2783#issuecomment-1489589347

   The problem has been solved.
   I found the configuration in conf.yaml
   content_security_policy: "default-src 'self' http://127.0.0.100:8000;
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org