![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/\u540c\u6e90.png\")
<\/p>\n<\/p>\n
<\/p>\n
\u70ba\u4e86\u907f\u514d\u81ea\u5df1\u7db2\u7ad9\u7684\u8cc7\u6e90\u906d\u5230\u5225\u4eba\u4f7f\u7528\u8207\u4fee\u6539\uff0c\u9019\u5c31\u662f\u540c\u6e90\u653f\u7b56\u5b58\u5728\u7684\u539f\u56e0\u3002\u9996\u5148\u5fc5\u9808\u8981\u4e86\u89e3\u4f55\u8b02\u540c\u6e90\u653f\u7b56\uff0c\u540c\u6e90\u653f\u7b56\u6240\u9650\u5236\u7684\u5c0d\u8c61\u662fJavascript\u6240\u767c\u51fa\u7684\u8de8\u4f86\u6e90\u8acb\u6c42\uff0c\u5176\u4ed6\u9001\u51fa\u8868\u55ae\u3001\u91cd\u65b0\u5c0e\u5411\u3001\u5d4c\u5165img\u7b49\u662f\u4e0d\u53d7\u9650\u5236\u7684\u3002\u8209\u4f8b\u4f86\u8aaa\uff0c\u5047\u8a2d\u4eca\u5929\u67092\u500b\u7db2\u7ad9\uff0c\u4e00\u500b\u662fFacebook\uff0c\u53e6\u4e00\u500b\u662f\u500b\u4eba\u7db2\u8a8c\uff0c\u5728\u540c\u6e90\u653f\u7b56\u4e0b\uff0cFacebook\u60f3\u8981\u900f\u904eJavascript\u5b58\u53d6\u500b\u4eba\u7db2\u8a8c\u7684\u6587\u7ae0\u662f\u4e0d\u88ab\u5141\u8a31\u7684\uff0c\u540c\u6a23\u7684\uff0c\u500b\u4eba\u7db2\u8a8c\u900f\u904eJavascript\u53d6\u5f97Facebook\u88e1\u7684\u8cbc\u6587\u4e5f\u662f\u4e0d\u88ab\u5141\u8a31\u7684\u3002<\/p>\n
\u7db2\u5740\u5224\u5b9a\u4f86\u6e90\u7684\u4f9d\u64da\uff0c\u4e00\u500b\u5b8c\u6574\u7684\u7db2\u5740\u6703\u5305\u542bScheme\u3001Domain\u3001Port\u8207Path\uff0c\u82e5\u7576\u4e2d\u7684Scheme\u3001Domain\u8207Port\u76f8\u540c\u5c31\u6703\u88ab\u8996\u70ba\u540c\u6e90\u3002<\/p>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/1.png\")
<\/p>\n
\u540c\u6a23\u4ee5\u00a0https:\/\/cms.aaasec.com.tw\/index.php\/category\/intro\/<\/a>\u00a0\u70ba\u4f8b\uff0c\u5224\u65b7\u4e0b\u5217\u662f\u5426\u540c\u6e90\u3002<\/p>\n \u8de8\u4f86\u6e90\u8cc7\u6e90\u5171\u7528\uff08Cross-Origin Resource Sharing\uff0cCORS\uff09\u662f\u4e00\u7a2e\u900f\u904eHTTP Header\u8b93\u5b58\u53d6\u5176\u4ed6\u4e0d\u540c\u7db2\u57df\u8cc7\u6e90\u7684\u6a5f\u5236\uff0c\u7576\u7136\u4e5f\u5fc5\u9808\u9075\u5b88\u540c\u6e90\u653f\u7b56\uff0c\u90a3\u53c8\u8981\u600e\u9ebc\u5b58\u53d6\u5176\u4ed6\u7db2\u57df\u7684\u8cc7\u6e90\u5462\uff1f\u9996\u5148\u5fc5\u9808\u8981\u4e86\u89e3\uff0c\u82e5\u767c\u51fa\u7684HTTP\u8acb\u6c42\u4e26\u975e\u7c21\u55ae\u8acb\u6c42\uff0c\u5247\u8a72\u8acb\u6c42\u5c31\u662fCORS\u3002\u800cCORS\u6703\u5148\u767c\u51fa\u9810\u6aa2\u8acb\u6c42\uff08Preflight Request\uff09\uff0c\u82e5\u4f3a\u670d\u5668\u5141\u8a31\u624d\u80fd\u5920\u5b58\u53d6\u8cc7\u6e90\u3002<\/p>\n \u700f\u89bd\u5668\u6703\u5148\u4f7f\u7528Option\u65b9\u6cd5\u5411Server\u767c\u51fa\u9810\u6aa2\u8acb\u6c42\uff0c\u82e5\u662fServer\u5141\u8a31\uff0c\u700f\u89bd\u5668\u624d\u6703\u958b\u59cb\u5b58\u53d6\u8cc7\u6e90\u3002\u4ee5\u4e0b\u6703\u900f\u904e\u7c21\u55ae\u7684\u7bc4\u4f8b\u89e3\u8aaa\u6d41\u7a0b\u3002<\/p>\n \u7b2c13\u884c\uff1a\u900f\u904eJavascript\u767c\u8d77\u8acb\u6c42\u3002 \u5716\u4e2d\u53ef\u4ee5\u767c\u73fe\u700f\u89bd\u5668\u5148\u4ee5Option\u5411Server\u767c\u9001\u9810\u6aa2\u8acb\u6c42\uff0c\u4e26\u4e14\u65bcServer\u56de\u61c9\u7684Header\u5f97\u5230\u5b58\u53d6\u8cc7\u8a0a\uff1a<\/p>\n \u5716\u4e2d\u53ef\u4ee5\u767c\u73fe\u9001\u51fa\u8acb\u6c42\u7684Header\u78ba\u5be6\u5305\u542btest-page\uff0c\u4e26\u4e14\u65bc\u9801\u9762\u5f48\u51fa\u4f86\u81eaServer\u56de\u61c9\u7684\u6642\u9593\u8a0a\u606f\u3002<\/p>\n \u5716\u4e2d\u53ef\u4ee5\u767c\u73fe\u9001\u51fa\u8acb\u6c42\u88ab\u62d2\u7d55\u6642\u4e26\u6c92\u6709\u986f\u793aServer\u56de\u61c9\u7684\u6642\u9593\u8a0a\u606f\uff0c\u4e26\u4e14\u700f\u89bd\u5668\u63d0\u793a\u5931\u6557\u3002<\/p>\n \u5716\u4e2d\u53ef\u4ee5\u767c\u73fe\u5931\u6557\u539f\u56e0\u662fhttp:\/\/192.168.10.128:5000<\/a>\u8207Server\u56de\u50b3\u7684http:\/\/192.168.10.129:5000<\/a>\u4e26\u4e0d\u76f8\u540c\u3002<\/p>\n \u7531\u65bc\u9810\u6aa2\u8acb\u6c42\u662f\u7531\u700f\u89bd\u5668\u767c\u51fa\uff0c\u4e26\u4e14\u4e5f\u662f\u7531\u700f\u89bd\u5668\u963b\u64cb\uff0c\u6240\u4ee5\u53ea\u80fd\u9632\u6b62\u4e00\u822c\u4eba\u4e0a\u7db2\u907f\u514d\u906d\u5230CSRF\u653b\u64ca\uff0c\u6240\u4ee5\u53ea\u8981\u4e0d\u85c9\u7531\u700f\u89bd\u5668\u5b58\u53d6\uff0c\u900f\u904e\u4ee5\u4e0b\u7bc4\u4f8b\u4fbf\u80fd\u5728\u9810\u6aa2\u8acb\u6c42\u5931\u6557\u60c5\u6cc1\u4e0b\uff0c\u4e00\u6a23\u7372\u5f97Server\u6240\u56de\u50b3\u7684\u6642\u9593\u8a0a\u606f\u3002<\/p>\n \u8f38\u51fa\u7d50\u679c\uff1a \u56e0\u6b64\uff0c\u82e5\u662f\u8981\u8b93\u8cc7\u6e90\u53ea\u80fd\u900f\u904e\u7279\u5b9a\u6a5f\u5668\u5b58\u53d6\uff0c\u9084\u662f\u85c9\u7531IP\u9650\u5236\u7b49\u5176\u4ed6\u65b9\u5f0f\u8f03\u4f73\u3002<\/p>\n![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/2.png\")
<\/p>\n\u8de8\u4f86\u6e90\u8cc7\u6e90\u5171\u7528<\/h3>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/3.png\")
<\/p>\n\u7c21\u55ae\u8acb\u6c42\uff1a<\/h4>\n
\n
\u9810\u6aa2\u8acb\u6c42<\/h4>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/4.png\")
<\/p>\n
\n\u7b2c15\u884c\uff1a\u8a2d\u5b9a\u8acb\u6c42\u5c0d\u8c61\u70bahttp:\/\/192.168.10.129:5000\/<\/a>\uff0c\u9032\u884c\u8de8\u7ad9\u8acb\u6c42\u3002
\n\u7b2c17\u884c\uff1a\u8a2d\u7f6eCORS Header\u4ee5\u5916\u7684\u6b04\u4f4d\uff0c\u4f7f\u5b83\u4e0d\u6703\u662f\u7c21\u55ae\u8acb\u6c42\u3002<\/p>\n\u9810\u6aa2\u8acb\u6c42\u6210\u529f<\/h4>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/5.png\")
<\/p>\n\n
\n\u8868\u793a\u8acb\u6c42\u7684Header\u9808\u5305\u542btest-page\u3002<\/li>\n
\n\u8868\u793a\u53ef\u4ee5\u63a5\u53d7\u4efb\u610f\u4f86\u6e90\u7684\u8acb\u6c42\u3002<\/li>\n<\/ul>\n![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/6.png\")
<\/p>\n\u9810\u6aa2\u8acb\u6c42\u5931\u6557<\/h4>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/7.png\")
<\/p>\n![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/8.png\")
<\/p>\n\u8a2d\u5b9a\u4e86CORS\u5c31\u5b89\u5168\u55ce\uff1f<\/h3>\n
![\"\"](\"https:\/\/cms.aaasec.com.tw\/wp-content\/uploads\/2019\/04\/9.png\")
<\/p>\nDateTime(129): 2019\/03\/25 22:53:32<\/code><\/p>\n\u53c3\u8003\u8cc7\u6599<\/h3>\n
\n