我们的志愿者还没有将这篇文章翻译为 中文 (简体)。加入我们帮助完成翻译
您也可以阅读此文章的English (US)版。
Reason
Reason: expected ‘true’ in CORS header ‘Access-Control-Allow-Credentials’
What went wrong?
The CORS request requires that the server permit the use of credentials, but the server's Access-Control-Allow-Credentials header's value isn't set to true to enable their use.
To fix this problem on the client side, revise the code to not request the use of credentials.
- If the request is being issued using
XMLHttpRequest, make sure you're not settingwithCredentialstotrue. - If using Server-sent events, make sure
EventSource.withCredentialsisfalse(it's the default value). - If using the Fetch API, make sure
Request.credentialsis"omit".
To eliminate this error by changing the server's configuration, adjust the server's configuration to set the Access-Control-Allow-Credentials header's value to true.
See also
- CORS errors
- Glossary: CORS
- CORS introduction