Access denied in IE 10 and 11 when ajax target is localhost

by

Internet Explorer raises this error as part of its security zones feature. Using default security settings, an “Access is Denied” error is raised when attempting to access a resource in the “Local intranet” zone from an origin in the “Internet” zone.

If you were writing your Ajax code manually, Internet Explorer would raise an error when you try to open the resource. For example:

var xhr = new XMLHttpRequest();
xhr.open('GET', 'http://localhost/', true); // This line will trigger an error
xhr.send();

You can work around this error by adding the origin site to the “Trusted sites” security zone. You can test this by adding “http://client.cors-api.appspot.com” to your “Trusted sites” zone and using this test page at test-cors.org with your localhost site as the Remote URL.

More Related Contents:

  1. Origin is not allowed by Access-Control-Allow-Origin
  2. How many concurrent AJAX (XmlHttpRequest) requests are allowed in popular browsers?
  3. CORS: Cannot use wildcard in Access-Control-Allow-Origin when credentials flag is true
  4. What is the motivation behind the introduction of preflight CORS requests?
  5. No ‘Access-Control-Allow-Origin’ header is present on the requested resource. Origin ‘…’ is therefore not allowed access
  6. What does it mean when an HTTP request returns status code 0?
  7. Why am I seeing an “origin is not allowed by Access-Control-Allow-Origin” error here? [duplicate]
  8. Same origin Policy and CORS (Cross-origin resource sharing)
  9. What security risks exist when setting Access-Control-Allow-Origin to accept all domains?
  10. Does an HTTP Status code of 0 have any meaning?
  11. CORS issue while making an Ajax request for oauth2 access token
  12. Why am I seeing an “origin is not allowed by Access-Control-Allow-Origin” error here? [duplicate]
  13. API Gateway CORS: no ‘Access-Control-Allow-Origin’ header
  14. Cross-Domain AJAX doesn’t send X-Requested-With header
  15. UIWebViewDelegate not monitoring XMLHttpRequest?
  16. $.ajax call working fine in IE8 and Doesn’t work in firefox and chrome browsers
  17. $http.get is not allowed by Access-Control-Allow-Origin but $.ajax is
  18. Set-Cookie on Browser with Ajax Request via CORS
  19. Ajax call bug with Chrome new version 73.0.3683.75?
  20. How to Detect Cross Origin (CORS) Error vs. Other Types of Errors for XMLHttpRequest() in Javascript
  21. Enable CORS in Golang
  22. Microsoft Edge blocked cross-domain requests sent to IPs in same private network CIDR
  23. Web sockets make ajax/CORS obsolete?
  24. Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at
  25. IE10/IE11 Abort Post Ajax Request After Clearing Cache with error “Network Error 0x2ef3”
  26. Cross-Origin Request Blocked
  27. NETWORK_ERROR: XMLHttpRequest Exception 101
  28. Cross-Domain Requests with jQuery
  29. XMLHttpRequest: Network Error 0x80070005, Access is denied on Microsoft Edge (but not IE)
  30. phonegap: cookie based authentication (PHP) not working [webview]

Leave a Comment