【发布时间】:2017-08-05 08:21:30
【问题描述】:
我找到了这个网站:
https://docs.microsoft.com/en-us/aspnet/core/security/cors
但是我对如何全局启用它感到困惑,因为似乎有两种方法可以做到这一点,这两种方法有什么区别?还是他们做两件不同的事情?
public IConfigurationRoot Configuration { get; }
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
//https://docs.microsoft.com/en-us/aspnet/core/security/cors
services.AddCors(options =>
{
options.AddPolicy("AllowSpecificOrigin",
builder => builder.WithOrigins("http://example.com")
.AllowAnyHeader()
);
});
services.Configure<MvcOptions>(options =>
{
options.Filters.Add(new CorsAuthorizationFilterFactory("AllowSpecificOrigin"));
});
// Add framework services.
services.AddMvc();
}
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
public void Configure(IApplicationBuilder app, IHostingEnvironment env, ILoggerFactory loggerFactory)
{
loggerFactory.AddConsole(Configuration.GetSection("Logging"));
loggerFactory.AddDebug();
app.UseCors("AllowSpecificOrigin");
app.UseMvc();
}
【问题讨论】:
-
Luis 为了清楚起见,您能否将您的代码块分成两种方式?
-
您为什么将唯一的答案标记为正确,然后在其上悬赏从可信和/或官方来源寻找答案。?
-
这是一个错误,但我不知道如何纠正它。,我怎样才能删除赏金?
标签: c# asp.net asp.net-web-api asp.net-core asp.net-web-api2