Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Django Rest Framework/Angular JS Preflight options request

Tags:

javascript

angularjs

django

django-cors-headers

django-rest-framework

I've written an API using Django REST Framework. For authentication, I'm using django-oauth2-provider: https://github.com/caffeinehit/django-oauth2-provider

I have cors configured in my settings page like so (using Corsheaders middleware.) 

MIDDLEWARE_CLASSES = (
    ...
    'corsheaders.middleware.CorsMiddleware',
    'django.middleware.common.CommonMiddleware',
    ...
)

CORS_ORIGIN_ALLOW_ALL = True  # Dangerous (using for testing purposes)

My client application is built with Angular JS. However, every time we make any request (including a GET requests), an options request is sent out. This options request takes ~50 - 500 ms depending on the request.

The api calls look like "https://example.com/api/v1/posts/?page=1 (2, 3, 4...etc)"

I need to wrap my head around why this request is being made, and how to improve performance for the application.

like image 298
Lfa Avatar asked Aug 10 '14 19:08

Lfa

People also ask

How can we avoid preflight requests?

Another way to avoid Preflight requests is to use simple requests. Preflight requests are not mandatory for simple requests, and according to w3c CORS specification, we can label HTTP requests as simple requests if they meet the following conditions. Request method should be GET , POST , or HEAD .

What is preflight request in angular?

It is an OPTIONS request, using three HTTP request headers: Access-Control-Request-Method , Access-Control-Request-Headers , and the Origin header. A preflight request is automatically issued by a browser and in normal cases, front-end developers don't need to craft such requests themselves.

How do I enable preflight requests?

A CORS preflight OPTIONS request can be triggered just by adding a Content-Type header to a request — if the value's anything except application/x-www-form-urlencoded , text/plain , or multipart/form-data .

How do you skip a preflight request in react?

The simplest way to prevent this is to set the Content-Type to be text/plain in your case. application/x-www-form-urlencoded & multipart/form-data Content-Types are also acceptable, but you'll of course need to format your request payload appropriately.

1 Answers

Here's Two Strategies for Crossing Origins with Performance in Mind.

They boil down to:

  1. Proper use of Access-Control-Max-Age
  2. Staying within the confines of a "simple request"
like image 150
nikmd23 Avatar answered Oct 11 '22 14:10

nikmd23
Sign in to Comment

Related questions

combine html template files into one JS file
How to start in BackboneJS, if I have a jQuery background? [closed]
Does Selenium wait for JavaScript to complete?
Disable Sound In Browser Window With JS or Jquery
Load local file in Chrome App Webview
Calculate difference between the date and time entered?
How to enable/disable "click to go forward" button in browser using history js?
How to refresh a client-side Google api access token?
Is accordion possible on responsive HTML email?
How can I zoom in/out my website without affecting sections
Mobile Safari: why is window.scrollTo(0, 0) not scrolling to (0, 0)?
Is it possible to detect whether whatsapp is installed?
node.js cannot parse ISOString date?
Bower: How to patch a package or apply overrides?
Scrollable x-axis in Chart.js
Gulp Watch Concat sometimes ignores some JS files
ColdFusion Layout, CFlayout, can't switch to parent tab
How can I import a Typescript 1.0 function like a node.js require with arguments?
When does the browser's event loop start?
Add span inside <option> tag and style it

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!