首页 > 编程语言> > javascript – Symfony2：允许使用谷歌图表访问Access-Control-Allow-Origin

javascript – Symfony2：允许使用谷歌图表访问Access-Control-Allow-Origin

2019-07-15 09:36:38 作者：互联网

在我的Symfony应用程序中,我使用的是谷歌图表.

我收到一个错误：

XMLHttpRequest cannot load https://www.google.com/uds/api/visualization/1.0/dca88b1ff7033fac80178eb526cb263e/ui+en.css. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://foodmeup.dev' is therefore not allowed access.

我试图通过设置一个监听器来解决这个问题,该监听器为响应添加标题(请参阅此处的cors监听器：Symfony2 – how can I set custom Headers?)并且它不起作用,我得到了相同的错误.

<?php
namespace AppBundle\EventListener;

use Symfony\Component\HttpKernel\Event\FilterResponseEvent;

class CorsListener
{
public function onKernelResponse(FilterResponseEvent $event)
{
    $response = $event->getResponse();
    $responseHeaders = $response->headers;

    $responseHeaders->set('Access-Control-Allow-Headers', 'origin, content-type, accept');
    $responseHeaders->set('Access-Control-Allow-Origin', '*');
    $responseHeaders->set('Access-Control-Allow-Methods', 'POST, GET, PUT, DELETE, PATCH, OPTIONS');

    $event->setResponse($response);
}
}

在我看来,我使用一个简单的谷歌图表：

<div class="piechart margin-auto" style="height: 220px;" data-completeness="{{ completeness }}"></div>

<script>var googleCharts = [];</script>
    <script type="text/javascript">

        function drawProfilePieCharts()
        {
            var completeness = $(this).data('completeness');

            var data = google.visualization.arrayToDataTable([
                ['Nom',    'Valeur'],
                ["Profil rempli à ", completeness],
                ['Manque', 100 - completeness]
            ]);

            var options = {
                backgroundColor: { fill:'transparent'},
                pieSliceBorderColor : 'transparent',
                pieHole: 0.8,
                legend: {position: 'top'},
                width: 220,
                height: 220,
                tooltip: {trigger: 'none'},
                pieStartAngle: -90,
                pieSliceTextStyle :{fontsize : 16, color: 'transparent'},
                slices: {
                    0: { color: '#09b4ff'},
                    1: { color: '#444'}
                },
                chartArea : {width: '90%', height: '90%'}
            };

            var chart = new google.visualization.PieChart(this);
            chart.draw(data, options);
        }

        googleCharts.push("$('.piechart').each(drawProfilePieCharts)");

    $(window).resize(function(){
        drawAllCharts();
    });


    google.load('visualization', '1', {packages:['corechart', 'bar', 'line']});
    var drawAllCharts = function() {
        for (var i = 0; i < googleCharts.length; i++) {
            eval(googleCharts[i]);
        }
    };

    google.setOnLoadCallback(function(){drawAllCharts()});

    </script>

解决方法:

试图只在响应上设置标题,它工作：

$response->headers->set('Access-Control-Allow-Origin', 'http://foodmeup.dev');

考虑到URL必须完全是预期的URL,使用HTTP或HTTPS,最后不使用/.

可以设置多个这些标头,在我的情况下,我使用4,HTTP和HTTPS,开发和prod服务器.一切正常.

标签：javascript,same-origin-policy,xmlhttprequest,symfony,html
来源： https://codeday.me/bug/20190715/1466410.html