CORS issue with angularness and post

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

CORS issue with angularness and post

Robert Ernens-3

>>Session id returns an empty string and a dump of the form variables
>>return
>>_data_ and not individual variables.
>
>This is from the POST? Looks like angular is using a weird Content-Type.
>What are the POST headers?

This is what Chrome developer tools provides

The 401 status is generated by caddyMasterAdd.a4d because no valid session
id is returned to the executable.


1. Remote Address:
37.187.129.224:80

2. Request URL:
http://glctracker.golf-loisir-club.com/gps/caddyMasterAdd.a4d

3. Request Method:
POST

4. Status Code:
401 Authorization Required.

5. Request Headersview parsed

     1. POST /gps/caddyMasterAdd.a4d HTTP/1.1
Host: glctracker.golf-loisir-club.com
Connection: keep-alive
Content-Length: 33
Pragma: no-cache
Cache-Control: no-cache
Accept: application/json, text/plain, */*
Origin: http://localhost:9000
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_0)
AppleWebKit/537.36 (KHTML, like Gecko) Chrome/38.0.2125.111 Safari/537.36
Content-Type: application/json;charset=UTF-8
Referer: http://localhost:9000/
Accept-Encoding: gzip,deflate
Accept-Language: fr-FR,fr;q=0.8,en-US;q=0.6,en;q=0.4


6. Request Payload

     1. sid=330CCA11B078DEA4&n=xxxxxx&i=1


7. Response Headersview source

     1. Access-Control-Allow-Headers:
content-type

     2. Access-Control-Allow-Methods:
GET,POST,PUT,DELETE

     3. Access-Control-Allow-Origin:
*

     4. Access-Control-Max-Age:
10

     5. Cache-Control:
no-cache

     6. Content-Length:
12

     7. Content-Type:
text/html; charset=utf-8

     8. Date:
Tue, 11 Nov 2014 20:13:50 GMT

     9. Expires:
Tue, 11 Nov 2014 20:13:50 GMT

     10. Pragma:
no-cache

     11. Server:
4D_v12/12.4.0

     12. WWW-Authenticate:
Digest realm="glcsoft.4DB"




>
>--
>Robert Ernens
>HCTBA Consulting
>Look2BookOnline - Web-à-la-Carte
>4 Rés. Les Bois du Cerf
>91450 Etiolles
>Tél.: +33.950.58.95.80
>GSM : +33.611.78.44.68


_______________________________________________
Active4D-dev mailing list
[hidden email]
http://list.aparajitaworld.com/listinfo/active4d-dev
Archives: http://active4d-nabble.aparajitaworld.com/
Reply | Threaded
Open this post in threaded view
|

Re: CORS issue with angularness and post

aparajita
Administrator
> Content-Type: application/json;charset=UTF-8
>
> 6. Request Payload
>
>     1. sid=330CCA11B078DEA4&n=xxxxxx&i=1

There's something wrong here. The payload is not JSON at all, even though that's what the Content-Type is set to.

Also, angularjs must not be setting the Origin header in the OPTIONS request, otherwise Active4D would recognize it as a CORS request.

Regards,

  Aparajita

_______________________________________________
Active4D-dev mailing list
[hidden email]
http://list.aparajitaworld.com/listinfo/active4d-dev
Archives: http://active4d-nabble.aparajitaworld.com/