Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Apache : CORS header 'Access-Control-Allow-Origin' missing

Tags:

javascript

jquery

apache

.htaccess

svg

i am calling some svg image in my website from some other using jquery post i get below error in console

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://abc/svgpaths/sample.svg. (Reason: CORS header 'Access-Control-Allow-Origin' missing).

i have below paramter set in my .htaccess file

<IfModule mod_headers.c>
     Header add Access-Control-Allow-Origin "*"
</IfModule>

i also tested a2enmod headers in putty it showed me Module headers already enabled

But when i use Ip instead of domain name

for eg : https://1.2.3.5/svgpaths/sample.svg

i get below error in console net::ERR_INSECURE_RESPONSE

i could not figure out what to do to fix it please guide me with issue.

Js code to call svg from other server

Case 1 with ip (differnt ssl on main and subdomain)

fabric.loadSVGFromURL("https://1.2.3.4/svgpaths/sample.svg", function(objects, options){
            var object = new fabric.util.groupSVGElements(objects, options);
            object.set({
                fill: '#000000',
                selectable:false
            });

Error : ERR_INSECURE_RESPONSE

Case 2 When called with differnet subdomain :(subdomain resolves to same ip as above case 1 , i recently pointed subdomain so is there somesetting in confi file that i missed )

fabric.loadSVGFromURL("https://abd.maindomain.com/svgpaths/sample.svg", function(objects, options){
            var object = new fabric.util.groupSVGElements(objects, options);
            object.set({
                fill: '#000000',
                selectable:false
            });

Error :Apache : CORS header 'Access-Control-Allow-Origin' missing

like image 699
pcoder Avatar asked Oct 18 '22 03:10

pcoder

2 Answers

Adding this code in /etc/apache2/sites-available/default-ssl.conf fixed it for me.

Header set Access-Control-Allow-Origin "https://example.com"
like image 135
pcoder Avatar answered Oct 24 '22 14:10

pcoder

It's possible you don't have an active SSL certificate. You can test that by going to the actual request URL.

As well including the actual HTTP response can be helpful (can be found in the network tab of chrome's developer tools).

PS. I would've responded with a comment but that's broken on mobile

like image 42
negul vaser Avatar answered Oct 24 '22 13:10

negul vaser
Sign in to Comment

Related questions

How to multiple filter list using jquery/javascript
Uncaught SyntaxError: Unexpected token import in "backbone.radio.js"
firebase query on the second/third level
Communicating between two renderer processes in Electron
Chrome Extensions: How do you gray out icon depending on the url?
Ember Testing route redirect
Remove a specific item from array in Vuex
Angular 2 Dynamic Forms How to show/hide a field based on the values of another
Set.prototype.has() with predicate
hide element after line-break
Selenium-WebDriver how to highlight element using javascript and firefox browser
How do I intercept an API call and display data from it using a UserScript?
Creating a paginated chronological query in Firestore
Any tips on context manager similar to Python in Javascript?
make slideDown() on header when overflow class is removed
iOS - css/js - Overlay scroll but prevent body scroll
Debug a script that sits in a partial view
Three.js - Scale model with scale.set() or increase model size?
document.write() overwriting the document?
How to cache fetched data in react without redux

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!