API Gateway CORS: no ‘Access-Control-Allow-Origin’ header

by

I get the same problem. I have used 10hrs to findout.

https://serverless.com/framework/docs/providers/aws/events/apigateway/

// handler.js

'use strict';

module.exports.hello = function(event, context, callback) {

const response = {
  statusCode: 200,
  headers: {
    "Access-Control-Allow-Origin" : "*", // Required for CORS support to work
    "Access-Control-Allow-Credentials" : true // Required for cookies, authorization headers with HTTPS 
  },
  body: JSON.stringify({ "message": "Hello World!" })
};

callback(null, response);
};

More Related Contents:

  1. CORS: Cannot use wildcard in Access-Control-Allow-Origin when credentials flag is true
  2. What is the motivation behind the introduction of preflight CORS requests?
  3. Same origin Policy and CORS (Cross-origin resource sharing)
  4. What security risks exist when setting Access-Control-Allow-Origin to accept all domains?
  5. CORS issue while making an Ajax request for oauth2 access token
  6. Cross-Domain AJAX doesn’t send X-Requested-With header
  7. Access denied in IE 10 and 11 when ajax target is localhost
  8. $http.get is not allowed by Access-Control-Allow-Origin but $.ajax is
  9. Set-Cookie on Browser with Ajax Request via CORS
  10. Ajax call bug with Chrome new version 73.0.3683.75?
  11. Enable CORS in Golang
  12. Web sockets make ajax/CORS obsolete?
  13. AWS API Gateway – CORS + POST not working
  14. Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at
  15. Cross-Origin Request Blocked
  16. Origin is not allowed by Access-Control-Allow-Origin
  17. Response to preflight request doesn’t pass access control check
  18. how to bypass Access-Control-Allow-Origin?
  19. Easiest way to retrieve cross-browser XmlHttpRequest
  20. What is the correct way to deal with JSF 2.0 exceptions for AJAXified components?
  21. How to properly redirect in NodeJS/ExpressJS?
  22. How to write javascript in client side to receive and parse `chunked` response in time?
  23. Cross-Domain Requests with jQuery
  24. Cross-origin resource sharing (CORS) concept
  25. Detecting AJAX requests on NodeJS with Express
  26. CORS error for application running from file:// scheme
  27. In javascript, how can I uniquely identify one browser window from another which are under the same cookiedbased sessionId
  28. How to hide ajax requests from firebug console?
  29. How to block external http requests? (securing AJAX calls)
  30. Ajax update and submission using h:commandButton

Leave a Comment