Not Monitored
Tag not monitored by Microsoft.
37,794 questions
azure functions app: sudden CORS issue (for like no reason)
aaron
1
Reputation point
getting the client origin error, after i had been hitting with a client from localhost for hours:
> Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource
why would my azure function service suddenly change like this?
5 answers
Sort by: Most helpful
-
-
Grmacjon-MSFT 17,456 Reputation points2020-05-22T07:42:30.337+00:00 Hi Aaron,
It looks like your question was answered on MSDN. posting here for visibility.
"To prevent malicious code execution on the client, modern browsers block requests from web applications to resources running in a separate domain. Cross-origin resource sharing (CORS) lets an Access-Control-Allow-Origin header declare which origins are allowed to call endpoints on your function app."
Please let us know if you have further questions.
Thanks,
Grace
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 12%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EO%3C/text%3E%3C/svg%3E)
OculisDev 1 Reputation point2020-08-22T18:38:07.143+00:00 Hi Grace,
I have similar issue with my react client reaching api in Azure functions. I have added the web application url to function app CORS policy to allow access, but I am still getting same issue.Access to XMLHttpRequest at 'functtionappUrl from origin 'Website Url' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
Any advise please?
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 26%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jose Andrés Espinoza Bonilla 1 Reputation point2021-01-09T03:39:58.997+00:00 Hi Grace, did you find the answer, I am trying the same scenario, but nothing works , Azure Function - SignalR and Front End React
Thanks for your comments
Sign in to comment -
-
Oscar Garcia @ozkary 1 Reputation point2021-03-26T14:55:48.947+00:00 Hi,
Use the local.settings.json settings in your project. For the CORs settings to kick in, run the project in debug mode. Just running from the CLI may not work."Host": {
"LocalHttpPort": 7071,
"CORS": "*",
"CORSCredentials": false
} -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 24%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEC%3C/text%3E%3C/svg%3E)
Evan Chatter 16 Reputation points2021-10-11T05:27:39.267+00:00 Basically, using ajax with local resources doesn't work.
Chrome and Safari has a restriction on using ajax with local resources. This error means that you are trying to perform Ajax on a local file. This is forbidden for security reasons.
In order to solve this problem, you can use firefox or upload your data to a temporary server. If you still want to use Chrome, start it with the below option;
--allow-file-access-from-files
Also, this kind of trouble is now partially solved simply by using the following jQuery instruction:
<script>
$.support.cors = true;
</script>