{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 Viruses. 的问题《failed crossOrigin Access for canvas toDataUrl》','https://www.manongdao.com/q-1263715.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I wanna create a litte page where people can create a kaleidoscope. I use an available script and added some image browse and Save-Funktionality. Now I have a weird problem with saving the resulting canvas data as an image.
Firefox console says: SecurityError: The operation is insecure
- failed for call: Canvas2Image.saveAsPNG(oCanvas);
And this occured even for pictures which come from my own site - whats that??? I checked out some tipps found here in stackoverflow. None of them could help.
- CORS doesnt fix the problem.
- .htaccess Entry had no effect: Header always set Access-Control-Allow-Origin *
Another guy seems to have same problem: How to allow cross-origin access to imgs and canvases?
Can anybody help me with this weird thing?
Thanks a lot!
Here is the test site: http://www.13lumen.de/kaleidoscopetest
The .htaccess entry on the server where the images come from has to be:
To complete CORS compatibility...
On the client-side you must also set the crossOrigin property of your Image object.
So you will need to set the crossOrigin property in your canvas2Image.js also (about line 158).
Other good references
Here's a good link to enable cross-domain transfers on your site:
http://enable-cors.org/
And after you've configured your site, use this to test CORS compatibility:
http://client.cors-api.appspot.com/client#?client_method=GET&client_credentials=false&server_url=http%3A%2F%2Fatlantacodingcompany.com%2Fimages%2Fhouse1.jpg&server_enable=true&server_status=200&server_credentials=false&server_tabs=remote
Until you get your own site CORS compliant, you can use dropbox.com to test your site.