Does the server have to set the 'Access-Control-Allow-Origin' parameter in the response header when responding to the fetch GET request?
This is Yiban’s API, not my server
No problem when making requests on the browser
I checked several information and found that it was of no use
This is the code for my get request
function request_get(url) {
return fetch(url, {
credentials: 'include',
}).then(function(response) {
return response.json()
})
}
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
This problem is caused by the same-origin policy of the browser, and there are several solutions:
JSONP
CORS
Use Nginx or Express static resource server for network proxy configuration, and simulate the local and remote sources as the same origin for data pulling
This means that the API you requested is not in the same domain as your page. If the API does not set the
Access-Control-Allow-Originfield, it means that it is not an API interface that supports cross-domain access. When writing Fetch logic on a page, no matter how the request header is customized, it will also be intercepted by the browser (before fetch, the browser will initiate a preflight OPTIONS request and determine whether fetch is allowed based on the header field of the response. At this time, the browser determines The API does not support cross-domain, so the request is intercepted for security reasons).