1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
This means that you are not including Content-Type
in the list of headers included in the access-Control-Request-Headers
header in your HTTP OPTIONS request.
CORS can be complex - you need to reply to that OPTIONS request (a CORS PreFlight Request) with a response that includes a Access-Control-Allow-Headers
header that lists the headers out of Access-Control-Request-Headers
that you would allow to be used in future CORS requests.
Refer too https://fetch.spec.whatwg.org/#http-cors-protocol for detail on how this works.