向后端发送请求时,cookie一直携带不过去,
后端响应Access-Control-Allow-Credentials: true
表示允许源发送带凭据的请求
但是还是报错:
“Response to preflight request doesn't pass access control check: The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. Origin 'http://localhost:8080' is therefore not allowed access. The credentials mode of requests initiated by the XMLHttpRequest is controlled by the withCredentials attribute.”
翻译:
对preflight请求的响应不能通过访问控制检查:当请求的凭证模式为“include”时,响应中的“访问-控制- allow- origin”头的值必须不是通配符“*”。因此,不允许访问源的“http://localhost:8080”。XMLHttpRequest发起的请求的凭据模式由withCredentials属性控制
看资料说“注意,当withCredentials属性设置为true,需要response header中的'Access-Control-Allow-Origin'为一个确定的域名,而不能使用'*'这样的通配
符。”
但是后端设置了Access-Control-Allow-Origin为我固定的域名还是不行
