Created
July 10, 2013 15:24
-
-
Save dirkk0/5967221 to your computer and use it in GitHub Desktop.
Enabling CORS in Angular JS with NodeJS/Express
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // in AngularJS (client) | |
| myApp.config(['$httpProvider', function($httpProvider) { | |
| $httpProvider.defaults.useXDomain = true; | |
| delete $httpProvider.defaults.headers.common['X-Requested-With']; | |
| }]); | |
| // in Express/nodeJS | |
| // in NodeJS/Express (server) | |
| app.all('/*', function(req, res, next) { | |
| res.header("Access-Control-Allow-Origin", "*"); | |
| res.header("Access-Control-Allow-Headers", "X-Requested-With"); | |
| res.header("Access-Control-Allow-Methods", "GET, POST","PUT"); | |
| next(); | |
| }); |
Thanks for the post, and for all other Java servers
`package com.rk.angular.filter;
import java.io.IOException;
import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletResponse;
public class CORSFilter implements Filter {
@Override
public void init(FilterConfig filterConfig) throws ServletException {
}
@Override
public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
throws IOException, ServletException {
HttpServletResponse httpResponse = (HttpServletResponse) response;
httpResponse.addHeader("Access-Control-Allow-Origin", "*");
// headers.add("Access-Control-Allow-Origin", // "http://podcastpedia.org"); //allows CORS requests only coming from podcastpedia.org
httpResponse.addHeader("Access-Control-Allow-Methods", "GET, POST, DELETE, PUT");
httpResponse.addHeader("Access-Control-Allow-Headers", "X-Requested-With, Content-Type, X-Codingpedia");
chain.doFilter(request, response);
}
@Override
public void destroy() {
}
}
`
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
So, I am curious here... I have an issue where AngularJS simply wont allow CORS access to the server (I have tried $http and Restangular).
However, in my case I am ONLY setting the 'Access-Control-Allow-Origin' header? Are the other two indeed required as well? I have always been under impression that ACAO was only one required?