{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 甜甜的少女心 的问题《Enabling CORS (Cross Origin Request) in Django》','https://www.manongdao.com/q-535990.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm trying to make use of the overpass API http://wiki.openstreetmap.org/wiki/Overpass_API with a JavaScript XMLHttpRequest in a project running on Django but I keep getting the
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://www.google.com/accounts/ClientLogin. (Reason: CORS header 'Access-Control-Allow-Origin' missing).
error. I get this error whether I'm using GET or POST, and from any other host, not just the overpass API.
I've installed django-cors-headers https://github.com/ottoyiu/django-cors-headers and followed the instructions there, putting 'corsheaders' into INSTALLED_APPS, and 'corsheaders.middleware.CorsMiddleware', 'django.middleware.common.CommonMiddleware', into MIDDLEWARE_APPS and I've set
CORS_ORIGIN_ALLOW_ALL = true
in settings.py but nothing seems to work. I'm running it locally with
python manage.py runserver
but I'm also hosting it on openshift. Neither on of these work, they both give the error above.
Please let me know if I am missing anything here.
I was having the same problem while trying to access my
Django Rest FrameworkAPI hosted at Heroku from my laptop (localhost). I am usingDjango 1.10.2,DRF 3.4.7andpython v3.4.I did
pip install django-cors-headers(version 1.2.2) and configured it as the docs say and then, the same error again :(Keep searching for hours and then it hit me!
I did
pip install django-cors-middleware(version 1.3.1) without uninstalling thedjango-cors-headerspackage. Also I didn't touch a thing in mysettings.pyfile (it was configured as thedjango-cors-headerssettings, although these two packages do not have many differences - the latter is a fork of the first).Hit refresh (from localhost) and everything worked brilliantly!
I was now able to fetch data from
myapp.herokuapp.comviajQuery's ajax method.