科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>What's the difference between "same-origin" and "no-cors" for JavaScript's F

    What's the difference between "same-origin" and "no-cors" for JavaScript's F

    programmeradmin8浏览0评论

    I thought same origin implies no CORS, and vice-versa. What's the difference between the two options for JavaScript's Fetch API's mode option?

    Also, in the specs, it says:

    Even though the default request mode is "no-cors", standards are highly discouraged from using it for new features. It is rather unsafe.

    Why is it unsafe? Source:

    I thought same origin implies no CORS, and vice-versa. What's the difference between the two options for JavaScript's Fetch API's mode option?

    Also, in the specs, it says:

    Even though the default request mode is "no-cors", standards are highly discouraged from using it for new features. It is rather unsafe.

    Why is it unsafe? Source: https://fetch.spec.whatwg/#requests

    • javascript
    • fetch-api
    Share Improve this question edited Mar 10, 2016 at 8:41 Bergi 665k161 gold badges1k silver badges1.5k bronze badges asked Mar 10, 2016 at 8:04 Leo JiangLeo Jiang 26.1k58 gold badges176 silver badges327 bronze badges
    Add a ment  | 

    1 Answer 1

    Reset to default 16

    With same-origin you can perform requests only to your origin, otherwise the request will result in an error.

    With no-cors, you can perform requests to other origins, even if they don't set the required CORS headers, but you'll get an opaque response.

    You can read more on MDN: https://developer.mozilla/en-US/docs/Web/API/Request/mode and https://developer.mozilla/en-US/docs/Web/API/Response/type.

    继续浏览有关 的文章

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论