You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@apisix.apache.org by "coolboywcm (via GitHub)" <gi...@apache.org> on 2023/03/30 01:52:26 UTC
[GitHub] [apisix-dashboard] coolboywcm opened a new issue, #2783: can not send cross domain requests in apisix/dashboard
coolboywcm opened a new issue, #2783:
URL: https://github.com/apache/apisix-dashboard/issues/2783
### Issue description
when I wrote a method on some page to send a cross domain requests
for example
pageFile:
/usr/local/apisix/dashboard/html/index.html
code:
const xhr = new XMLHttpRequest();
xhr.open('POST', 'http://127.0.0.100:8000/api/data', true);
xhr.setRequestHeader('Content-Type', 'application/json');
xhr.send(JSON.stringify({ username: 'xxx', password: 'xxx' }));
deployment page url:
http://127.0.0.100:9000
response err: Refused to connect to 'http://127.0.0.100:8000/api/data' because it violates the following Content Security Policy directive: "default-src 'self'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.
when I deployment the same page file to Tomcat, visit http://127.0.0.100:8080/index.html
response success!
### Expected behavior
Is the Apisix web container not supply cross domain requests?
### How to Reproduce
1.add my cross domain requests code in file /usr/local/apisix/dashboard/html/index.html
2.visit page http://127.0.0.100:9000
### Screenshots
index.html:
![image](https://user-images.githubusercontent.com/31384289/228707075-e27d1032-fbb7-4d33-b7aa-d9ecafc3c184.png)
index.html path:
![image](https://user-images.githubusercontent.com/31384289/228707443-fc26500c-cc5a-4ae0-8fb0-654521db308b.png)
error:
![image](https://user-images.githubusercontent.com/31384289/228707332-8681ded3-62f8-4762-bc65-b3af42ea5259.png)
### Environment
- apisix version (3.1.0):
- OS (CentOS Linux release 7.6.1810):
- etcd version, if relevant ("etcd_version":"3.4.0"):
- APISIX Dashboard version, if relevant(3.0.0)
### Additional context
_No response_
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [apisix-dashboard] coolboywcm closed issue #2783: can not send cross domain requests in apisix/dashboard
Posted by "coolboywcm (via GitHub)" <gi...@apache.org>.
coolboywcm closed issue #2783: can not send cross domain requests in apisix/dashboard
URL: https://github.com/apache/apisix-dashboard/issues/2783
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [apisix-dashboard] coolboywcm commented on issue #2783: can not send cross domain requests in apisix/dashboard
Posted by "coolboywcm (via GitHub)" <gi...@apache.org>.
coolboywcm commented on issue #2783:
URL: https://github.com/apache/apisix-dashboard/issues/2783#issuecomment-1489589347
The problem has been solved.
I found the configuration in conf.yaml
content_security_policy: "default-src 'self' http://127.0.0.100:8000;
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@apisix.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org