如何启用CORS？

I'm making a request from client side to a web-API on different domain to extract data in JSON format. How do I enable Cross Origin Resource Sharing(CORS)? Client runs on https while my web-API runs on http.

This is the AJAX call that I'm making :

$(document).ready(function () {
    $.ajax({
        type: "GET",
        url: "http://map.techriff.in/api/values",
        success: function (json) {
            console.log(json);
        },
        error: function (err) {
            console.log(err);
        }
    });
});

You need to add the Access-Control-Allow-Origin: http://domain.com to your response header, where domain.com is replaced with the domain you want to allow (don't use * wildcards).

How you do this depends one your server stack. In ASP.NET:

Response.AppendHeader("Access-Control-Allow-Origin", "http://domain.com");

You then need to set $.support.cors = true in your jQuery to enable it on the client.

Add $.support.cors = true; somewhere before to make your $.ajax call.

Source: Is it safe to use $.support.cors = true; in jQuery?

Assuming you correctly set the Access-Control-Allow-Origin header on the server as well.

CORS jQuery AJAX request

This site helped me when I had an issue with Chrome showing the following error: "No 'Access-Control-Allow-Origin' header is present on the requested resource"

Go down to the section titled "Enable CORS".

https://docs.microsoft.com/en-us/aspnet/web-api/overview/security/enabling-cross-origin-requests-in-web-api

Note, I used the following attribute syntax as opposed to what was listed in the site above:

        [EnableCors("http://localhost:1616", "*", "*")]

First of all, this is a big issue. Everyone will say you have to enable CORS in the server. What if we are requesting an API?. What I did is.

Step 1: Make an ajax call to my own server. Step 2: Make https request from my server to the API. Step 3: Send the result to the ajax.

My AJAX call.

   $.ajax({
              type: "POST",
              url: "makepay",
              data:{
                          key:value
                     },
                     success: function(response) {
                         //place to handle the response

                          },
                          error: function() {
                             //place to handle the error
                          }
                }); 

My server page

const https = require('https');
app.post('/makepay',function(req, res){
  var options = {
  host: "Site address",
  path: "Path",
  method: "POST",
  headers: {
      'Content-Type': 'application/x-www-form-urlencoded',

  }
  var req = https.request(options, (resp) => {
  resp.on('data', (xmlresponse) => {
  res.send(xmlresponse);  
  }}
  req.write(parameters_to_the_API);
  req.end();

});

I hope you will get at least the idea.