【发布时间】:2022-01-22 19:31:44
【问题描述】:
当我在虚拟环境中运行python manage.py runserver 后访问http://127.0.0.1:8000/ 时,我收到此错误权限被拒绝
我的 Django 仍处于默认文件夹结构中,尚未更改
我尝试安装pip install django-cors-headers 并将以下所有内容添加到setting.py file 文件中
from corsheaders.middleware import CorsMiddleware
from corsheaders.middleware import CorsMiddleware
CORS_ORIGIN_ALLOW_ALL = True
CORS_ALLOW_CREDENTIALS = True
ALLOWED_HOSTS = ['*']
CORS_ORIGIN_ALL_ALL =True
CORS_ALLOWED_ORIGINS = [
"https://example.com",
"https://sub.example.com",
"http://localhost:8080",
"http://127.0.0.1:9000",
]
CORS_ALLOWED_ORIGIN_REGEXES = [
r"^https://\w+\.example\.com$",
]
CORS_URLS_REGEX = r"^/api/.*$"
CORS_ALLOW_METHODS = [
"DELETE",
"GET",
"OPTIONS",
"PATCH",
"POST",
"PUT",
]
INSTALLED_APPS = [
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'corsheaders'
]
MIDDLEWARE = [
'django.middleware.security.SecurityMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'corsheaders.middleware.CorsMiddleware'
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
"django.middleware.common.CommonMiddleware"
]
【问题讨论】:
-
你能显示 urls.py 和处理
/路径的视图吗? -
您在
CORS_ALLOWD_ORIGINS中设置了错误的端口。最后一行应该是"http://127.0.0.1:8000",而不是9000 -
我也这样做了,但是没有用,我只是删除它并运行
django-admin startproject mysite
标签: django api django-cors-headers