Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

HTTP OPTIONS error in Phil Sturgeon's Codeigniter Restserver and Backbone.js

Tags:

rest

codeigniter

backbone.js

http-options-method

codeigniter-restserver

My backbone.js application throwing an HTTP OPTIONS not found error when I try to save a model to my restful web service that's located on another host/URL.

Based on my research, I gathered from this post that :

a request would constantly send an OPTIONS http request header, and not trigger the POST request at all.

Apparently CORS with requests that will "cause side-effects on user data" will make your browser "preflight" the request with the OPTIONS request header to check for approval, before actually sending your intended HTTP request method.

I tried to get around this by:

  • Settting emulateHTTP in Backbone to true.

Backbone.emulateHTTP = true;

  • I also allowed allowed all CORS and CSRF options in the header.

    header('Access-Control-Allow-Origin: *');
    header("Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept"); header("Access-Control-Allow-Methods: GET, POST, OPTIONS");

The application crashed when the Backbone.emulateHTTP line of code was introduced.

Is there a way to respond to OPTIONS request in CodeIgniter RESTServer and are there any other alternatives to allow either disable this request from talking place?

I found this on Github as one solution. I am not sure if I should use it as it seems a bit outdated.

like image 268
Joel Dean Avatar asked Mar 24 '13 18:03

Joel Dean

2 Answers

I encountered exactly the same problem. To solve it I have a MY_REST_Controller.php in core and all my REST API controllers use it as a base class. I simply added a constructor like this to handle OPTIONS requests.

function __construct() {

    header('Access-Control-Allow-Origin: *');
    header("Access-Control-Allow-Headers: X-API-KEY, Origin, X-Requested-With, Content-Type, Accept, Access-Control-Request-Method");
    header("Access-Control-Allow-Methods: GET, POST, OPTIONS, PUT, DELETE");
    $method = $_SERVER['REQUEST_METHOD'];
    if($method == "OPTIONS") {
        die();
    }
    parent::__construct();
}

This just checks if the request type is OPTIONS and if so just dies out which return a code 200 for the request.

like image 197
jamespcole Avatar answered Oct 14 '22 17:10

jamespcole

You can also modify the $allowed_http_methods property in your subclass to exclude the options method. Previous versions of REST_controller did nothing with OPTIONS and adding this line seems to mimic that behavior:

protected $allowed_http_methods = array('get', 'delete', 'post', 'put');
like image 28
andymcintosh Avatar answered Oct 14 '22 18:10

andymcintosh
Sign in to Comment

Related questions

CodeIgniter Passing POST data from RestClient to RestServer API
Doctrine undefined function apc_fetch
Client-side or server-side processing?
Message: ini_set(): A session is active. You cannot change the session module's ini settings at this time
'Greater than or equal' and 'less than or equal' CODEIGNITER
Use PHP code in external Javascript file
httpd.conf AllowOverride All
PHP & Codeigniter - how to pass parameters to a model?
Not giving access to certain method in controller when session is not set in codeigniter
codeigniter : pass data to a view included in a view
Best Way To Build A Multi-Notification System in PHP
Netbeans code completion for CodeIgniter
Under Codeigniter, is it possible to see mysql_error()?
Lazy loading JavaScript and Inline JavaScript
codeigniter correct way to check if libraries/helper/core files is loaded
Codeigniter error session DB
Using Mysql WHERE IN clause in codeigniter
How to integrate codeIgniter with netbeans fully
Codeigniter Redirect -- The URI you submitted has disallowed characters
CodeIgniter PHP Apache 500 Internal Server Error

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!