Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums CodeIgniter 4 CodeIgniter 4 Support XMLHttpRequest error and isAjax not work
XMLHttpRequest error and isAjax not work
  • Offline Secux
    Junior Member
  • **
  • Posts: 28
    Threads: 16
    Joined: May 2021
    Reputation: 0
#1
09-01-2021, 12:34 PM

i am trying to make the following request with ajax but i get an error - 
XMLHttpRequest cannot load https://api.domain.com/view?id=1&csrf_na...0524468477 due to access control checks.

my script:
Code:
$.ajax({
    url:'https://api.domain.com/view',
    method: 'get',
data: {'id':'<?= session()->get('id') ?>','<?= csrf_token() ?>':'<?= csrf_hash() ?>'},
headers: {'X-Requested-With': 'XMLHttpRequest'},
dataType: "json",
cache: false,
success: function (data) {

url site: https://my.domain.com
controller:
PHP Code:
public function view() {

if ($this->request->isAJAX())        

 /* my code */

}


i also think the isAjax check doesn't work either
Reply
  • Offline iRedds
    Senior Member
  • ****
  • Posts: 662
    Threads: 36
    Joined: Apr 2019
    Reputation: 45
#2
09-02-2021, 11:07 PM

Read about CORS and Access-Control-Allow-Origin header
Reply
  • Offline Secux
    Junior Member
  • **
  • Posts: 28
    Threads: 16
    Joined: May 2021
    Reputation: 0
#3
09-03-2021, 12:54 AM

I tried to add a header but it doesn't work.
there may be some special way to add a header in codeigniter 4?

Help me
Reply
  • Offline InsiteFX
    Super Moderator
  • ******
  • Posts: 6,327
    Threads: 291
    Joined: Oct 2014
    Reputation: 235
#4
09-03-2021, 02:47 AM
(This post was last modified: 09-03-2021, 02:48 AM by InsiteFX.)

This is how I do it in public where index.php is .htaccess file add this.

Code:
## .htaccess Control For CORS Configuration

# Add Font Awesome Font Types
AddType application/vnd.ms-fontobject .eot
AddType application/x-font-ttf        .ttf
AddType application/x-font-opentype  .otf
AddType application/font-woff        .woff
AddType application/font-woff2        .woff2

<IfModule mod_headers.c>
    <FilesMatch "\.(ttf|ttc|otf|eot|woff|woff2|svg|svgz|jpg|png|ico|font.css|css|js)$">
        ## un-remark this one for all access and remark out the one below it
        #Header set Access-Control-Allow-Origin "*"
        ## Change this to your local host url. and https or http
        Header add Access-Control-Allow-Origin: "https://yoursite.com"
        Header add Access-Control-Allow-Methods: "GET,POST,OPTIONS,DELETE,PUT"
        Header add Access-Control-Allow-Headers: "Upgrade-Insecure-Requests"
    </FilesMatch>
</IfModule>

# Remove index.php from URL
RewriteCond %{HTTP:X-Requested-With}    !^XMLHttpRequest$
RewriteCond %{THE_REQUEST}              ^[^/]*/index\.php [NC]
RewriteRule ^index\.php(.*)$            $1 [R=301,NS,L]

That should work for you.
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )
Reply




Theme © iAndrew 2016 - Forum software by © MyBB