Cross domain access restrictions ?

Question

3.50/5 (2 votes)

See more:

C#

XMLHttpRequest cannot load "dev server deployed Web Api". No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin '""' is therefore not allowed access

I build the application using WebApi, HTML, JS, AngularJS, CSS, Bootstrap.
Consuming Api via Ajax call in the Javascript. We use a CMS and convert the HTML to custom asset in cold fusion(just change the .html to .cfm). That custom asset is in Production server.

Now the Api is deployed in the dev server and UI code files deployed in Production server which is trying to access the Api from dev server.

Please give me some solution, how can I fix this issue.

What I have tried:

Dev Api url tried in Production server browser, local browser, and dev server browser works every where. But when I run the production deployed application I can see the UI but no Api data in the fields.

Posted 13-May-16 15:33pm

proudwarrior

Updated 16-May-16 17:42pm

Add a Solution

Comments

santosh.yadav198613 16-May-16 10:05am

It can be done by adding custom headers, if you are using MVC you can add your own attribute to avoid this.

proudwarrior 16-May-16 23:39pm

Thanks,I fixed the issue.

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

proudwarrior · Accepted Answer · 2016-05-16T17:42:00

Solution 1

Added Enable CORS configuration in WebApiConfig
Under Register I have added this code.

var cors = new EnableCorsAttribute("*", "*", "*");
            config.EnableCors(cors);

Posted 16-May-16 17:42pm

proudwarrior